cisco.ise.trusted_certificate_import – Resource module for Trusted Certificate Import

Note

This plugin is part of the cisco.ise collection (version 1.0.2).

To install it use: ansible-galaxy collection install cisco.ise.

To use it in a playbook, specify: cisco.ise.trusted_certificate_import.

New in version 1.0.0: of cisco.ise

Synopsis

  • Manage operation create of the resource Trusted Certificate Import.

Note

This module has a corresponding action plugin.

Requirements

The below requirements are needed on the host that executes this module.

  • ciscoisesdk

Parameters

Parameter Choices/Defaults Comments
allowBasicConstraintCAFalse
boolean
    Choices:
  • no
  • yes
Allow Certificates with Basic Constraints CA Field as False (required).
allowOutOfDateCert
boolean
    Choices:
  • no
  • yes
Allow out of date certificates (required).
allowSHA1Certificates
boolean
    Choices:
  • no
  • yes
Allow SHA1 based certificates (required).
data
string
Certificate content (required).
description
string
Description of the certificate.
name
string
Name of the certificate.
trustForCertificateBasedAdminAuth
boolean
    Choices:
  • no
  • yes
Trust for Certificate based Admin authentication.
trustForCiscoServicesAuth
boolean
    Choices:
  • no
  • yes
Trust for authentication of Cisco Services.
trustForClientAuth
boolean
    Choices:
  • no
  • yes
Trust for client authentication and Syslog.
trustForIseAuth
boolean
    Choices:
  • no
  • yes
Trust for authentication within ISE.
validateCertificateExtensions
boolean
    Choices:
  • no
  • yes
Validate trust certificate extension.

See Also

See also

Trusted Certificate Import reference

Complete reference of the Trusted Certificate Import object model.

Examples

- name: Create
  cisco.ise.trusted_certificate_import:
    ise_hostname: "{{ise_hostname}}"
    ise_username: "{{ise_username}}"
    ise_password: "{{ise_password}}"
    ise_verify: "{{ise_verify}}"
    allowBasicConstraintCAFalse: true
    allowOutOfDateCert: true
    allowSHA1Certificates: true
    data: string
    description: string
    name: string
    trustForCertificateBasedAdminAuth: true
    trustForCiscoServicesAuth: true
    trustForClientAuth: true
    trustForIseAuth: true
    validateCertificateExtensions: true

Return Values

Common return values are documented here, the following are the fields unique to this module:

Key Returned Description
ise_response
dictionary
always
A dictionary or list with the response returned by the Cisco ISE Python SDK

Sample:
{ "response": { "id": "string", "message": "string", "status": "string" }, "version": "string" }


Authors

  • Rafael Campos (@racampos)