/ home / sushma_alethea / sushma_alethea.test / 1.0.0 / module / icx_aaa_authorization

sushma_alethea.test.icx_aaa_authorization (1.0.0) — module

Configures AAA authorization in Ruckus ICX 7000 series switches.

Authors: Ruckus Wireless (@Commscope)

Install collection

Install with ansible-galaxy collection install sushma_alethea.test:==1.0.0

Add to requirements.yml

  collections:
    - name: sushma_alethea.test
      version: 1.0.0

Description

Configures AAA authorization in Ruckus ICX 7000 series switches.

Usage examples

Scanned by Steampunk Spotter

- name: configure aaa authorization coa_enable and coa_ignore
  community.network.icx_aaa_authorization:
    coa_enable:
      state: present
    coa_ignore:
      request: flip-port
      state: present

Scanned by Steampunk Spotter

- name: disable aaa authorization for commands
  community.network.icx_aaa_authorization:
    commands:
      privilege_level: 0
      primary_method: radius
      backup_method1: tacacs+
      state: absent

Inputs

    
exec_:
    description: Determines the user privilege level when users are authenticated.
    suboptions:
      backup_method1:
        choices:
        - radius
        - tacacs+
        - none
        description: Backup authorization method if primary method fails.
        type: str
      backup_method2:
        choices:
        - none
        description: Backup authorization method if primary and backup1 methods fails.
        type: str
      primary_method:
        choices:
        - radius
        - tacacs+
        - none
        description: Primary authorization method.
        required: true
        type: str
      state:
        choices:
        - present
        - absent
        default: present
        description: Specifies whether to configure or remove authorization.
        type: str
    type: dict

commands:
    description: Configures the AAA authorization configuration parameters for EXEC commands.
    suboptions:
      backup_method1:
        choices:
        - radius
        - tacacs+
        - none
        description: Backup authorization method if primary method fails.
        type: str
      backup_method2:
        choices:
        - none
        description: Backup authorization method if primary and backup method1 fails.
        type: str
      primary_method:
        choices:
        - radius
        - tacacs+
        - none
        description: Primary authorization method.
        required: true
        type: str
      privilege_level:
        choices:
        - 0
        - 4
        - 5
        description: Configures the device to perform AAA authorization for the commands
          available at the specified privilege level. Valid values are 0,4 and 5.
        required: true
        type: int
      state:
        choices:
        - present
        - absent
        default: present
        description: Specifies whether to configure or remove authorization.
        type: str
    type: dict

coa_enable:
    description: Enables RADIUS Change of Authorization (CoA).
    suboptions:
      state:
        choices:
        - present
        - absent
        default: present
        description: Specifies whether to configure or remove authorization.
        type: str
    type: dict

coa_ignore:
    description: Discards the specified RADIUS Change of Authorization (CoA) messages.
    suboptions:
      request:
        choices:
        - disable-port
        - dm-request
        - flip-port
        - modify-acl
        - reauth-host
        description: Specifies which message request to ignore.
        required: true
        type: str
      state:
        choices:
        - present
        - absent
        default: present
        description: Specifies whether to configure or remove authorization.
        type: str
    type: dict