cisco.ise.authorization_profile – Resource module for Authorization Profile¶

Note

This plugin is part of the cisco.ise collection (version 0.0.9).

To install it use: ansible-galaxy collection install cisco.ise.

To use it in a playbook, specify: cisco.ise.authorization_profile.

New in version 1.0.0: of cisco.ise

Synopsis
Requirements
Parameters
See Also
Examples
Return Values

Synopsis ¶

Manage operations create, update and delete of the resource Authorization Profile.

Note

This module has a corresponding action plugin.

Requirements ¶

The below requirements are needed on the host that executes this module.

ciscoisesdk

Parameters ¶

Parameter			Choices/Defaults	Comments
accessType string				Authorization Profile's accessType.
acl string				Authorization Profile's acl.
advancedAttributes list / elements=string				Authorization Profile's advancedAttributes.
	leftHandSideDictionaryAttribue dictionary			Authorization Profile's leftHandSideDictionaryAttribue.
		AdvancedAttributeValueType string		Authorization Profile's AdvancedAttributeValueType.
		attributeName string		Authorization Profile's attributeName.
		dictionaryName string		Authorization Profile's dictionaryName.
	rightHandSideAttribueValue dictionary			Authorization Profile's rightHandSideAttribueValue.
		AdvancedAttributeValueType string		Authorization Profile's AdvancedAttributeValueType.
		value string		Authorization Profile's value.
airespaceACL string				Authorization Profile's airespaceACL.
airespaceIPv6ACL string				Authorization Profile's airespaceIPv6ACL.
asaVpn string				Authorization Profile's asaVpn.
authzProfileType string				Authorization Profile's authzProfileType.
autoSmartPort string				Authorization Profile's autoSmartPort.
avcProfile string				Authorization Profile's avcProfile.
daclName string				Authorization Profile's daclName.
description string				Authorization Profile's description.
easywiredSessionCandidate boolean			Choices: no yes	EasywiredSessionCandidate flag.
id string				Authorization Profile's id.
interfaceTemplate string				Authorization Profile's interfaceTemplate.
ipv6ACLFilter string				Authorization Profile's ipv6ACLFilter.
ipv6DaclName string				Authorization Profile's ipv6DaclName.
macSecPolicy string				Authorization Profile's macSecPolicy.
name string				Authorization Profile's name.
neat boolean			Choices: no yes	Neat flag.
profileName string				Authorization Profile's profileName.
reauth dictionary				Authorization Profile's reauth.
	connectivity string			Authorization Profile's connectivity.
	timer integer			Authorization Profile's timer.
serviceTemplate boolean			Choices: no yes	ServiceTemplate flag.
trackMovement boolean			Choices: no yes	TrackMovement flag.
vlan dictionary				Authorization Profile's vlan.
	nameID string			Authorization Profile's nameID.
	tagID integer			Authorization Profile's tagID.
voiceDomainPermission boolean			Choices: no yes	VoiceDomainPermission flag.
webAuth boolean			Choices: no yes	WebAuth flag.
webRedirection dictionary				Authorization Profile's webRedirection.
	acl string			Authorization Profile's acl.
	displayCertificatesRenewalMessages boolean		Choices: no yes	DisplayCertificatesRenewalMessages flag.
	portalName string			Authorization Profile's portalName.
	staticIPHostNameFQDN string			Authorization Profile's staticIPHostNameFQDN.
	WebRedirectionType string			Authorization Profile's WebRedirectionType.

Examples ¶

- name: Create
  cisco.ise.authorization_profile:
    ise_hostname: "{{ise_hostname}}"
    ise_username: "{{ise_username}}"
    ise_password: "{{ise_password}}"
    ise_verify: "{{ise_verify}}"
    state: present
    accessType: ACCESS_ACCEPT
    acl: aclfilter
    advancedAttributes:
    - leftHandSideDictionaryAttribue:
        AdvancedAttributeValueType: AdvancedDictionaryAttribute
        attributeName: cisco-call-filter
        dictionaryName: Cisco
      rightHandSideAttribueValue:
        AdvancedAttributeValueType: AttributeValue
        value: '23'
    airespaceACL: ACL
    airespaceIPv6ACL: ACL6
    asaVpn: Cisco:cisco-call-type
    authzProfileType: SWITCH
    autoSmartPort: autoSmartPort
    avcProfile: avcProfile
    daclName: PERMIT_ALL_IPV4_TRAFFIC
    description: description
    easywiredSessionCandidate: false
    id: id
    interfaceTemplate: interfaceTemplate
    ipv6ACLFilter: ipv6ACLFilter
    ipv6DaclName: PERMIT_ALL_IPV6_TRAFFIC
    macSecPolicy: MUST_SECURE
    name: name
    neat: false
    profileName: Cisco
    reauth:
      connectivity: RADIUS_REQUEST
      timer: 1800
    serviceTemplate: false
    trackMovement: false
    vlan:
      nameID: vlanName
      tagID: 1
    voiceDomainPermission: false
    webAuth: false
    webRedirection:
      WebRedirectionType: CentralizedWebAuth
      acl: acl
      displayCertificatesRenewalMessages: true
      portalName: Sponsored Guest Portal (default)
      staticIPHostNameFQDN: 10.56.54.200

- name: Update by id
  cisco.ise.authorization_profile:
    ise_hostname: "{{ise_hostname}}"
    ise_username: "{{ise_username}}"
    ise_password: "{{ise_password}}"
    ise_verify: "{{ise_verify}}"
    state: present
    accessType: ACCESS_ACCEPT
    acl: aclfilter
    advancedAttributes:
    - leftHandSideDictionaryAttribue:
        AdvancedAttributeValueType: AdvancedDictionaryAttribute
        attributeName: cisco-call-filter
        dictionaryName: Cisco
      rightHandSideAttribueValue:
        AdvancedAttributeValueType: AttributeValue
        value: '23'
    airespaceACL: ACL
    airespaceIPv6ACL: ACL6
    asaVpn: Cisco:cisco-call-type
    authzProfileType: SWITCH
    autoSmartPort: autoSmartPort
    avcProfile: avcProfile
    daclName: PERMIT_ALL_IPV4_TRAFFIC
    description: description
    easywiredSessionCandidate: false
    id: id
    interfaceTemplate: interfaceTemplate
    ipv6ACLFilter: ipv6ACLFilter
    ipv6DaclName: PERMIT_ALL_IPV6_TRAFFIC
    macSecPolicy: MUST_SECURE
    name: name
    neat: false
    profileName: Cisco
    reauth:
      connectivity: RADIUS_REQUEST
      timer: 1800
    serviceTemplate: false
    trackMovement: false
    vlan:
      nameID: vlanName
      tagID: 1
    voiceDomainPermission: false
    webAuth: false
    webRedirection:
      WebRedirectionType: CentralizedWebAuth
      acl: acl
      displayCertificatesRenewalMessages: true
      portalName: Sponsored Guest Portal (default)
      staticIPHostNameFQDN: 10.56.54.200

- name: Delete by id
  cisco.ise.authorization_profile:
    ise_hostname: "{{ise_hostname}}"
    ise_username: "{{ise_username}}"
    ise_password: "{{ise_password}}"
    ise_verify: "{{ise_verify}}"
    state: absent
    id: string

Return Values ¶

Common return values are documented here, the following are the fields unique to this module:

Key	Returned	Description
ise_response dictionary	always	A dictionary or list with the response returned by the Cisco ISE Python SDK Sample: {}

Authors¶

Rafael Campos (@racampos)

cisco.ise.authorization_profile – Resource module for Authorization Profile¶

Synopsis¶

Requirements¶

Parameters¶

See Also¶

Examples¶

Return Values¶