Try SpotterCreate a Policy Forwarding Rule.
| "added in version" 1.0.0 of willguibr.zpacloud"
Authors: William Guilherme (@willguibr)
Install with ansible-galaxy collection install willguibr.zpacloud:==1.1.1
collections:
- name: willguibr.zpacloud
version: 1.1.1This module will create, update or delete a specific Policy Forwarding Rule
- name: Policy Forwarding Rule - Example
willguibr.zpacloud.zpa_policy_forwarding_rule:
name: "Policy Forwarding Rule - Example"
description: "Policy Forwarding Rule - Example"
action: "BYPASS"
rule_order: 1
operator: "AND"
conditions:
- negated: false
operator: "OR"
operands:
- name: "app_segment"
object_type: "APP"
lhs: "id"
rhs: "216196257331292105"
- negated: false
operator: "OR"
operands:
- name: "segment_group"
object_type: "APP_GROUP"
lhs: "id"
rhs: "216196257331292103"
- negated: false
operator: "OR"
operands:
- name: "zpn_client_type_exporter"
object_type: "CLIENT_TYPE"
lhs: "id"
rhs: "zpn_client_type_exporter"
- name: "zpn_client_type_browser_isolation"
object_type: "CLIENT_TYPE"
lhs: "id"
rhs: "zpn_client_type_browser_isolation"
- name: "zpn_client_type_zapp"
object_type: "CLIENT_TYPE"
lhs: "id"
rhs: "zpn_client_type_zapp"
- negated: false
operator: "OR"
operands:
- name: "CrowdStrike_ZPA_ZTA_80"
object_type: "POSTURE"
lhs: "{{ postures.data[0].posture_udid }}"
rhs: "false"
id:
description: ''
type: str
name:
description: ''
required: true
type: str
state:
choices:
- present
- absent
default: present
description: ''
type: str
action:
choices:
- INTERCEPT
- INTERCEPT_ACCESSIBLE
- BYPASS
default: INTERCEPT
description: ''
required: false
type: str
operator:
choices:
- AND
- OR
description: ''
required: false
type: str
priority:
description: ''
required: false
type: str
action_id:
description: ''
required: false
type: str
client_id:
description: ''
required: false
type: str
conditions:
description: ''
elements: dict
required: false
suboptions:
id:
description: ''
type: str
negated:
description: ''
required: false
type: bool
operands:
description: ''
elements: dict
required: false
suboptions:
id:
description: ''
type: str
idp_id:
description: ''
required: false
type: str
lhs:
description: ''
required: true
type: str
name:
description: ''
required: false
type: str
object_type:
choices:
- APP
- APP_GROUP
- BYPASS
- SAML
- IDP
- CLIENT_TYPE
- TRUSTED_NETWORK
- MACHINE_GRP
- POSTURE
- SCIM
- SCIM_GROUP
- EDGE_CONNECTOR_GROUP
description: ''
required: true
type: str
rhs:
description: ''
required: false
type: str
rhs_list:
description: ''
elements: str
required: false
type: list
type: list
operator:
choices:
- AND
- OR
description: ''
required: true
type: str
type: list
custom_msg:
description: ''
required: false
type: str
rule_order:
description: ''
required: false
type: str
customer_id:
description: ''
required: false
type: str
description:
description: ''
required: false
type: str
policy_type:
description: ''
required: false
type: str
default_rule:
description: ''
required: false
type: bool
client_secret:
description: ''
required: false
type: str
default_rule_name:
description: ''
required: false
type: str
bypass_default_rule:
description: ''
required: false
type: bool