community.network.avi_authprofile module – Module for setup of AuthProfile Avi RESTful Object
Note
This module is part of the community.network collection (version 3.3.0).
You might already have this collection installed if you are using the ansible
package.
It is not included in ansible-core
.
To check whether it is installed, run ansible-galaxy collection list
.
To install it, use: ansible-galaxy collection install community.network
.
To use it in a playbook, specify: community.network.avi_authprofile
.
Synopsis
This module is used to configure AuthProfile object
more examples at https://github.com/avinetworks/devops
Parameters
Parameter |
Comments |
---|---|
Avi API context that includes current session ID and CSRF Token. This allows user to perform single login and re-use the session. |
|
Avi API version of to use for Avi API and objects. Default: “16.4.4” |
|
Patch operation to use when using avi_api_update_method as patch. Choices:
|
|
Default method for object update is HTTP PUT. Setting to patch will override that behavior to use HTTP PATCH. Choices:
|
|
Avi Credentials dictionary which can be used in lieu of enumerating Avi Controller login details. |
|
Avi controller version Default: “16.4.4” |
|
Avi controller IP or SQDN |
|
Avi controller API csrftoken to reuse existing session with session id |
|
Avi controller password |
|
Avi controller port |
|
Avi controller API session id to reuse existing session with csrftoken |
|
Avi controller tenant Default: “admin” |
|
Avi controller tenant UUID |
|
Avi controller request timeout Default: 300 |
|
Avi controller API token |
|
Avi controller username |
|
It disables avi session information to be cached as a fact. Choices:
|
|
IP address or hostname of the controller. The default value is the environment variable Default: “” |
|
User defined description for the object. |
|
Http user authentication params. |
|
Ldap server and directory settings. |
|
Name of the auth profile. |
|
Pingaccessagent uuid. It is a reference to an object of type pingaccessagent. Field introduced in 18.2.3. |
|
Password of Avi user in Avi controller. The default value is the environment variable Default: “” |
|
Saml settings. Field introduced in 17.2.3. |
|
The state that should be applied on the entity. Choices:
|
|
Tacacs+ settings. |
|
Name of tenant used for all Avi API calls and context of object. Default: “admin” |
|
It is a reference to an object of type tenant. |
|
UUID of tenant used for all Avi API calls and context of object. Default: “” |
|
Type of the auth profile. Enum options - AUTH_PROFILE_LDAP, AUTH_PROFILE_TACACS_PLUS, AUTH_PROFILE_SAML, AUTH_PROFILE_PINGACCESS. |
|
Avi controller URL of the object. |
|
Username used for accessing Avi controller. The default value is the environment variable Default: “” |
|
Uuid of the auth profile. |
Notes
Note
For more information on using Ansible to manage Avi Network devices see https://www.ansible.com/ansible-avi-networks.
Examples
- name: Create user authorization profile based on the LDAP
community.network.avi_authprofile:
controller: '{{ controller }}'
password: '{{ password }}'
username: '{{ username }}'
http:
cache_expiration_time: 5
group_member_is_full_dn: false
ldap:
base_dn: dc=avi,dc=local
bind_as_administrator: true
port: 389
security_mode: AUTH_LDAP_SECURE_NONE
server:
- 10.10.0.100
settings:
admin_bind_dn: [email protected]
group_filter: (objectClass=*)
group_member_attribute: member
group_member_is_full_dn: true
group_search_dn: dc=avi,dc=local
group_search_scope: AUTH_LDAP_SCOPE_SUBTREE
ignore_referrals: true
password: password
user_id_attribute: samAccountname
user_search_dn: dc=avi,dc=local
user_search_scope: AUTH_LDAP_SCOPE_ONE
name: ProdAuth
tenant_ref: admin
type: AUTH_PROFILE_LDAP
Return Values
Common return values are documented here, the following are the fields unique to this module:
Key |
Description |
---|---|
AuthProfile (api/authprofile) object Returned: success, changed |
Authors
Gaurav Rastogi (@grastogi23)