Try SpotterCreate a Policy Timeout Rule
| "added in version" 1.0.0 of willguibr.zpacloud"
Authors: William Guilherme (@willguibr)
Install with ansible-galaxy collection install willguibr.zpacloud:==1.1.1
collections:
- name: willguibr.zpacloud
version: 1.1.1This module create/update/delete a Policy Timeout Rule in the ZPA Cloud.
- name: "Policy Timeout Rule - Example"
willguibr.zpacloud.zpa_policy_timeout_rule:
name: "Policy Timeout Rule - Example"
description: "Policy Timeout Rule - Example"
action: "RE_AUTH"
rule_order: 1
reauth_idle_timeout: 600
reauth_timeout: 172800
operator: "AND"
conditions:
- negated: false
operator: "OR"
operands:
- name: "app_segment"
object_type: "APP"
lhs: "id"
rhs: "216196257331292105"
- negated: false
operator: "OR"
operands:
- name: "segment_group"
object_type: "APP_GROUP"
lhs: "id"
rhs: "216196257331292103"
- negated: false
operator: "OR"
operands:
- name: "zpn_client_type_exporter"
object_type: "CLIENT_TYPE"
lhs: "id"
rhs: "zpn_client_type_exporter"
- name: "zpn_client_type_browser_isolation"
object_type: "CLIENT_TYPE"
lhs: "id"
rhs: "zpn_client_type_browser_isolation"
- name: "zpn_client_type_zapp"
object_type: "CLIENT_TYPE"
lhs: "id"
rhs: "zpn_client_type_zapp"
- negated: false
operator: "OR"
operands:
- name: "CrowdStrike_ZPA_ZTA_40"
object_type: "POSTURE"
lhs: "13ba3d97-aefb-4acc-9e54-6cc230dee4a5"
rhs: "true"
id:
description: ''
required: false
type: str
name:
description:
- This is the name of the timeout policy.
required: true
type: str
state:
choices:
- present
- absent
default: present
description: Whether the app should be present or absent.
type: str
action:
choices:
- RE_AUTH
description:
- This is for providing the rule action.
required: false
type: str
operator:
choices:
- AND
- OR
description:
- This denotes the operation type.
required: false
type: str
priority:
description: ''
required: false
type: str
action_id:
description:
- This field defines the description of the server.
required: false
type: str
client_id:
description: ''
required: false
type: str
conditions:
description: ''
elements: dict
required: false
suboptions:
id:
description: ''
type: str
negated:
description: ''
required: false
type: bool
operands:
description: ''
elements: dict
required: false
suboptions:
id:
description: ''
type: str
idp_id:
description: ''
required: false
type: str
lhs:
description: ''
required: true
type: str
name:
description: ''
required: false
type: str
object_type:
description: ''
required: true
type: str
rhs:
description: ''
required: false
type: str
rhs_list:
description: ''
elements: str
required: false
type: list
type: list
operator:
description: ''
required: true
type: str
type: list
custom_msg:
description:
- This is for providing a customer message for the user.
required: false
type: str
rule_order:
description: ''
required: false
type: str
customer_id:
description: ''
required: false
type: str
description:
description:
- This is the description of the access policy.
required: false
type: str
policy_type:
description: ''
required: false
type: str
default_rule:
description:
- This is for providing a customer message for the user.
required: false
type: bool
client_secret:
description: ''
required: false
type: str
reauth_timeout:
description: ''
required: false
type: str
default_rule_name:
description: ''
required: false
type: str
reauth_default_rule:
description: ''
required: false
type: bool
reauth_idle_timeout:
description: ''
required: false
type: str