community.network.ce_aaa_server_host module – Manages AAA server host configuration on HUAWEI CloudEngine switches.
Note
This module is part of the community.network collection (version 3.3.0).
You might already have this collection installed if you are using the ansible
package.
It is not included in ansible-core
.
To check whether it is installed, run ansible-galaxy collection list
.
To install it, use: ansible-galaxy collection install community.network
.
To use it in a playbook, specify: community.network.ce_aaa_server_host
.
Parameters
Parameter |
Comments |
---|---|
Set the public-net. Choices:
|
|
Whether the server is secondary. Choices:
|
|
Hwtacacs server host name. |
|
Server IPv4 address. Must be a valid unicast IP address. The value is a string of 0 to 255 characters, in dotted decimal notation. |
|
Server IPv6 address. Must be a valid unicast IP address. The total length is 128 bits. |
|
Hwtacacs server type. Choices:
|
|
Name of a HWTACACS template. The value is a string of 1 to 32 case-insensitive characters. |
|
VPN instance name. |
|
FTP user directory. The value is a string of 1 to 255 characters. |
|
Login password of a user. The password can contain letters, numbers, and special characters. The value is a string of 1 to 255 characters. |
|
The type of local user login through, such as ftp ssh snmp telnet. |
|
Name of the user group where the user belongs. The user inherits all the rights of the user group. The value is a string of 1 to 32 characters. |
|
Login level of a local user. The value is an integer ranging from 0 to 15. |
|
Name of a local user. The value is a string of 1 to 253 characters. |
|
RADIUS server group’s name. The value is a string of 1 to 32 case-insensitive characters. |
|
IPv4 address of configured server. The value is a string of 0 to 255 characters, in dotted decimal notation. |
|
IPv6 address of configured server. The total length is 128 bits. |
|
Configured primary or secondary server for a particular server. Choices:
|
|
Hostname of configured server. The value is a string of 0 to 255 case-sensitive characters. |
|
Configured server port for a particular server. The value is an integer ranging from 1 to 65535. |
|
Type of Radius Server. Choices:
|
|
Set VPN instance. The value is a string of 1 to 31 case-sensitive characters. |
|
Specify desired state of the resource. Choices:
|
Notes
Note
This module requires the netconf system service be enabled on the remote device being managed.
Recommended connection is
netconf
.This module also works with
local
connections for legacy playbooks.
Examples
- name: AAA server host test
hosts: cloudengine
connection: local
gather_facts: no
vars:
cli:
host: "{{ inventory_hostname }}"
port: "{{ ansible_ssh_port }}"
username: "{{ username }}"
password: "{{ password }}"
transport: cli
tasks:
- name: "Config local user when use local scheme"
community.network.ce_aaa_server_host:
state: present
local_user_name: user1
local_password: 123456
provider: "{{ cli }}"
- name: "Undo local user when use local scheme"
community.network.ce_aaa_server_host:
state: absent
local_user_name: user1
local_password: 123456
provider: "{{ cli }}"
- name: "Config radius server ip"
community.network.ce_aaa_server_host:
state: present
radius_group_name: group1
radius_server_type: Authentication
radius_server_ip: 10.1.10.1
radius_server_port: 2000
radius_server_mode: Primary-server
radius_vpn_name: _public_
provider: "{{ cli }}"
- name: "Undo radius server ip"
community.network.ce_aaa_server_host:
state: absent
radius_group_name: group1
radius_server_type: Authentication
radius_server_ip: 10.1.10.1
radius_server_port: 2000
radius_server_mode: Primary-server
radius_vpn_name: _public_
provider: "{{ cli }}"
- name: "Config hwtacacs server ip"
community.network.ce_aaa_server_host:
state: present
hwtacacs_template: template
hwtacacs_server_ip: 10.10.10.10
hwtacacs_server_type: Authorization
hwtacacs_vpn_name: _public_
provider: "{{ cli }}"
- name: "Undo hwtacacs server ip"
community.network.ce_aaa_server_host:
state: absent
hwtacacs_template: template
hwtacacs_server_ip: 10.10.10.10
hwtacacs_server_type: Authorization
hwtacacs_vpn_name: _public_
provider: "{{ cli }}"
Return Values
Common return values are documented here, the following are the fields unique to this module:
Key |
Description |
---|---|
check to see if a change was made on the device Returned: always Sample: true |
|
k/v pairs of aaa params after module execution Returned: always Sample: {“radius server ipv4”: [[“10.1.10.1”, “Authentication”, “2000”, “Primary-server”, “_public_”]]} |
|
k/v pairs of existing aaa server host Returned: always Sample: {“radius server ipv4”: []} |
|
k/v pairs of parameters passed into module Returned: always Sample: {“hwtacacs_is_public_net”: “false”, “hwtacacs_is_secondary_server”: “false”, “hwtacacs_server_ip”: “10.135.182.157”, “hwtacacs_server_type”: “Authorization”, “hwtacacs_template”: “wdz”, “hwtacacs_vpn_name”: “_public_”, “local_password”: “******”, “state”: “present”} |
|
command sent to the device Returned: always Sample: [“hwtacacs server template test”, “hwtacacs server authorization 10.135.182.157 vpn-instance test_vpn public-net”] |
Authors
wangdezhuang (@QijunPan)