Try SpotterCreate a Browser Access Application Segment.
| "added in version" 1.0.0 of willguibr.zpacloud"
Authors: William Guilherme (@willguibr)
Install with ansible-galaxy collection install willguibr.zpacloud:==1.1.1
collections:
- name: willguibr.zpacloud
version: 1.1.1This module create/update/delete a Browser Access Application Segment in the ZPA Cloud.
- name: Create an app segment
willguibr.zpacloud.zpa_browser_access:
name: Example Application
description: Example Application Test
enabled: true
health_reporting: ON_ACCESS
bypass_type: NEVER
clientless_apps:
- name: "crm.example.com"
application_protocol: "HTTP"
application_port: "8080"
certificate_id: "216196257331282583"
trust_untrusted_cert: true
enabled: true
domain: "crm.example.com"
- name: "crm2.example.com"
application_protocol: "HTTP"
application_port: "8082"
certificate_id: "216196257331282583"
trust_untrusted_cert: true
enabled: true
domain: "crm.example.com"
is_cname_enabled: true
tcp_port_range:
- from: "80"
to: "80"
domain_names:
- crm.example.com
segment_group_id: "216196257331291896"
server_groups:
- "216196257331291969"
id:
description: Unique ID.
type: str
name:
description: Name of the application.
required: true
type: str
state:
choices:
- present
- absent
default: present
description: Whether the app should be present or absent.
type: str
enabled:
description: Whether this application is enabled or not.
required: false
type: bool
client_id:
description: ''
required: false
type: str
bypass_type:
choices:
- ALWAYS
- NEVER
- ON_NET
description: Indicates whether users can bypass ZPA to access applications.
required: false
type: str
customer_id:
description: ''
required: false
type: str
description:
description: Description of the application.
required: false
type: str
ip_anchored:
description: ip_anchored
required: false
type: bool
config_space:
choices:
- DEFAULT
- SIEM
default: DEFAULT
description: config space.
required: false
type: str
domain_names:
description: List of domains and IPs.
elements: str
required: true
type: list
client_secret:
description: ''
required: false
type: str
server_groups:
description: List of the server group IDs.
elements: dict
required: true
suboptions:
id:
description: ''
required: true
type: str
name:
description: ''
required: false
type: str
type: list
double_encrypt:
description: Whether Double Encryption is enabled or disabled for the app.
required: false
type: bool
tcp_port_range:
description: tcp port range
elements: dict
required: false
suboptions:
from:
description: ''
required: false
type: str
to:
description: ''
required: false
type: str
type: list
udp_port_range:
description: udp port range
elements: dict
required: false
suboptions:
from:
description: ''
required: false
type: str
to:
description: ''
required: false
type: str
type: list
clientless_apps:
description: ''
elements: dict
required: false
suboptions:
allow_options:
description: ''
required: false
type: bool
app_id:
description: ''
type: str
application_port:
description: ''
required: false
type: str
application_protocol:
description: ''
required: true
type: str
certificate_id:
description: ''
required: true
type: str
certificate_name:
description: ''
required: false
type: str
cname:
description: ''
required: false
type: str
description:
description: ''
required: false
type: str
domain:
description: ''
required: false
type: str
enabled:
description: ''
required: false
type: bool
hidden:
description: ''
required: false
type: bool
id:
description: ''
type: str
local_domain:
description: ''
required: false
type: str
name:
description: ''
required: true
type: str
path:
description: ''
required: false
type: str
trust_untrusted_cert:
description: ''
required: false
type: bool
type: list
default_max_age:
default: ''
description: default_max_age
required: false
type: str
health_reporting:
choices:
- NONE
- ON_ACCESS
- CONTINUOUS
default: NONE
description: 'Whether health reporting for the app is Continuous or On Access. Supported
values: NONE, ON_ACCESS, CONTINUOUS.'
required: false
type: str
icmp_access_type:
choices:
- PING_TRACEROUTING
- PING
- NONE
default: NONE
description: icmp access type.
required: false
type: str
is_cname_enabled:
description: Indicates if the Zscaler Client Connector (formerly Zscaler App or Z
App) receives CNAME DNS records from the connectors.
required: false
type: bool
segment_group_id:
description: segment group id.
required: true
type: str
health_check_type:
description: health check type.
type: str
segment_group_name:
description: segment group name.
required: false
type: str
default_idle_timeout:
default: ''
description: default idle timeout.
required: false
type: str
passive_health_enabled:
description: passive health enabled.
required: false
type: bool