fortinet.fortimanager.fmgr_dvmdb_device module – Device table, most attributes are read-only and can only be changed internally.

Note

This module is part of the fortinet.fortimanager collection (version 2.8.2).

You might already have this collection installed if you are using the ansible package. It is not included in ansible-core. To check whether it is installed, run ansible-galaxy collection list.

To install it, use: ansible-galaxy collection install fortinet.fortimanager.

To use it in a playbook, specify: fortinet.fortimanager.fmgr_dvmdb_device.

New in fortinet.fortimanager 1.0.0

Synopsis

  • This module is able to configure a FortiManager device.

  • Examples include all parameters and values which need to be adjusted to data sources before usage.

Parameters

Parameter

Comments

access_token

string

The token to access FortiManager without using username and password.

adom

string / required

The parameter (adom) in requested url.

bypass_validation

boolean

Only set to True when module schema diffs with FortiManager API structure, module continues to execute without validating parameters.

Choices:

  • false ← (default)

  • true

device

string / required

The parameter (device) in requested url.

dvmdb_device

dictionary

The top level parameters set.

adm_pass

any

(list) Adm pass.

adm_usr

string

Adm usr.

app_ver

string

App ver.

av_ver

string

Av ver.

beta

integer

Beta.

branch_pt

integer

Branch pt.

build

integer

Build.

checksum

string

Checksum.

cluster_worker

string

Cluster worker.

conf_status

string

Conf status.

Choices:

  • "unknown"

  • "insync"

  • "outofsync"

conn_mode

string

Conn mode.

Choices:

  • "active"

  • "passive"

conn_status

string

Conn status.

Choices:

  • "UNKNOWN"

  • "up"

  • "down"

db_status

string

Db status.

Choices:

  • "unknown"

  • "nomod"

  • "mod"

desc

string

Desc.

dev_status

string

Dev status.

Choices:

  • "none"

  • "unknown"

  • "checkedin"

  • "inprogress"

  • "installed"

  • "aborted"

  • "sched"

  • "retry"

  • "canceled"

  • "pending"

  • "retrieved"

  • "changed_conf"

  • "sync_fail"

  • "timeout"

  • "rev_revert"

  • "auto_updated"

eip

string

Eip.

fap_cnt

integer

Fap cnt.

faz_full_act

aliases: faz.full_act

integer

Faz.

faz_perm

aliases: faz.perm

integer

Faz.

faz_quota

aliases: faz.quota

integer

Faz.

faz_used

aliases: faz.used

integer

Faz.

fex_cnt

integer

Fex cnt.

first_tunnel_up

integer

First tunnel up.

flags

list / elements=string

Flags.

Choices:

  • "has_hdd"

  • "vdom_enabled"

  • "discover"

  • "reload"

  • "interim_build"

  • "offline_mode"

  • "is_model"

  • "fips_mode"

  • "linked_to_model"

  • "ip-conflict"

  • "faz-autosync"

  • "need_reset"

  • "backup_mode"

  • "azure_vwan_nva"

  • "fgsp_configured"

  • "cnf_mode"

  • "sase_managed"

  • "override_management_intf"

  • "sdwan_management"

  • "deny_api_access"

foslic_cpu

integer

VM Meter vCPU count.

foslic_dr_site

string

VM Meter DR Site status.

Choices:

  • "disable"

  • "enable"

foslic_inst_time

integer

VM Meter first deployment time

foslic_last_sync

integer

VM Meter last synchronized time

foslic_ram

integer

VM Meter device RAM size

foslic_type

string

VM Meter license type.

Choices:

  • "temporary"

  • "trial"

  • "regular"

  • "trial_expired"

foslic_utm

list / elements=string

VM Meter services

fw - Firewall

av - Anti-virus

ips - IPS

app - App control

url - Web filter

utm - Full UTM

fwb - FortiWeb

Choices:

  • "fw"

  • "av"

  • "ips"

  • "app"

  • "url"

  • "utm"

  • "fwb"

fsw_cnt

integer

Fsw cnt.

ha_group_id

integer

Ha group id.

ha_group_name

string

Ha group name.

ha_mode

string

Enabled - Value reserved for non-FOS HA devices.

Choices:

  • "standalone"

  • "AP"

  • "AA"

  • "ELBC"

  • "DUAL"

  • "enabled"

  • "unknown"

  • "fmg-enabled"

  • "autoscale"

ha_slave

list / elements=dictionary

Ha slave.

conf_status

integer

Conf status.

idx

integer

Idx.

name

string

Name.

prio

integer

Prio.

role

string

Role.

Choices:

  • "slave"

  • "master"

sn

string

Sn.

status

integer

Status.

ha_upgrade_mode

integer

Ha upgrade mode.

ha_vsn

aliases: ha.vsn

string

Ha.

hdisk_size

integer

Hdisk size.

hostname

string

Hostname.

hw_generation

integer

Hw generation.

hw_rev_major

integer

Hw rev major.

hw_rev_minor

integer

Hw rev minor.

hyperscale

integer

Hyperscale.

ip

string

Ip.

ips_ext

integer

Ips ext.

ips_ver

string

Ips ver.

last_checked

integer

Last checked.

last_resync

integer

Last resync.

latitude

string

Latitude.

lic_flags

integer

Lic flags.

lic_region

string

Lic region.

location_from

string

Location from.

logdisk_size

integer

Logdisk size.

longitude

string

Longitude.

maxvdom

integer

Maxvdom.

meta_fields

aliases: meta fields

dictionary

Default metafields

mgmt_id

integer

Mgmt id.

mgmt_if

string

Mgmt if.

mgmt_mode

string

Mgmt mode.

Choices:

  • "unreg"

  • "fmg"

  • "faz"

  • "fmgfaz"

mgmt_uuid

string

Mgmt uuid.

mgt_vdom

string

Mgt vdom.

module_sn

string

Module sn.

mr

integer

Mr.

name

string

Unique name for the device.

nsxt_service_name

string

Nsxt service name.

os_type

string

Os type.

Choices:

  • "unknown"

  • "fos"

  • "fsw"

  • "foc"

  • "fml"

  • "faz"

  • "fwb"

  • "fch"

  • "fct"

  • "log"

  • "fmg"

  • "fsa"

  • "fdd"

  • "fac"

  • "fpx"

  • "fna"

  • "fdc"

  • "ffw"

  • "fsr"

  • "fad"

  • "fap"

  • "fxt"

  • "fts"

  • "fai"

  • "fwc"

  • "fis"

  • "fed"

  • "fpa"

  • "fca"

  • "ftc"

  • "fss"

os_ver

string

Os ver.

Choices:

  • "unknown"

  • "0.0"

  • "1.0"

  • "2.0"

  • "3.0"

  • "4.0"

  • "5.0"

  • "6.0"

  • "7.0"

  • "8.0"

  • "9.0"

patch

integer

Patch.

platform_str

string

Platform str.

prefer_img_ver

string

Prefer img ver.

prio

integer

Prio.

private_key

string

Private key.

private_key_status

integer

Private key status.

psk

string

Psk.

relver_info

string

Relver info.

role

string

Role.

Choices:

  • "master"

  • "ha-slave"

  • "autoscale-slave"

sn

string

Unique value for each device.

vdom

list / elements=dictionary

Vdom.

comments

string

Comments.

meta_fields

aliases: meta fields

dictionary

Meta fields.

name

string

Name.

opmode

string

Opmode.

Choices:

  • "nat"

  • "transparent"

rtm_prof_id

integer

Rtm prof id.

status

string

Status.

vdom_type

string

Vdom type.

Choices:

  • "traffic"

  • "admin"

vpn_id

integer

Vpn id.

version

integer

Version.

vm_cpu

integer

Vm cpu.

vm_cpu_limit

integer

Vm cpu limit.

vm_lic_expire

integer

Vm lic expire.

vm_lic_overdue_since

integer

Vm lic overdue since.

vm_mem

integer

Vm mem.

vm_mem_limit

integer

Vm mem limit.

vm_payg_status

integer

Vm payg status.

vm_status

any

(int or str) Vm status.

enable_log

boolean

Enable/Disable logging for task.

Choices:

  • false ← (default)

  • true

forticloud_access_token

string

Authenticate Ansible client with forticloud API access token.

proposed_method

string

The overridden method for the underlying Json RPC request.

Choices:

  • "update"

  • "set"

  • "add"

rc_failed

list / elements=integer

The rc codes list with which the conditions to fail will be overriden.

rc_succeeded

list / elements=integer

The rc codes list with which the conditions to succeed will be overriden.

workspace_locking_adom

string

The adom to lock for FortiManager running in workspace mode, the value can be global and others including root.

workspace_locking_timeout

integer

The maximum time in seconds to wait for other user to release the workspace lock.

Default: 300

Notes

Note

  • Starting in version 2.4.0, all input arguments are named using the underscore naming convention (snake_case). Please change the arguments such as “var-name” to “var_name”. Old argument names are still available yet you will receive deprecation warnings. You can ignore this warning by setting deprecation_warnings=False in ansible.cfg.

  • Running in workspace locking mode is supported in this FortiManager module, the top level parameters workspace_locking_adom and workspace_locking_timeout help do the work.

  • Normally, running one module can fail when a non-zero rc is returned. you can also override the conditions to fail or succeed with parameters rc_failed and rc_succeeded

Examples

- name: Delete first FOS devices from FMG In a specific adom
  hosts: fortimanagers
  gather_facts: false
  connection: httpapi
  vars:
    ansible_httpapi_use_ssl: true
    ansible_httpapi_validate_certs: false
    ansible_httpapi_port: 443
    device_adom: "root"
  tasks:
    - name: Fetch all devices
      fortinet.fortimanager.fmgr_fact:
        facts:
          selector: "dvmdb_device"
          params:
            adom: "{{ device_adom }}"
            device: "your_value"
      register: alldevices
    - name: No name
      when: alldevices.meta.response_data != []
      ansible.builtin.debug:
        msg:
          - "We are going to delete device: {{ alldevices.meta.response_data[0].name }}"
          - "IP of the device is: {{ alldevices.meta.response_data[0].ip }}"
    - name: Create The Task To Delete The Device
      when: alldevices.meta.response_data != [] and False
      fortinet.fortimanager.fmgr_dvm_cmd_del_device:
        dvm_cmd_del_device:
          device: "{{ alldevices.meta.response_data[0].name }}"
          adom: "{{ device_adom }}"
          flags:
            - "create_task"
            - "nonblocking"
      register: uninstalling_task
    - name: Poll the task
      when: alldevices.meta.response_data != [] and False
      fortinet.fortimanager.fmgr_fact:
        facts:
          selector: "task_task"
          params:
            task: "{{ uninstalling_task.meta.response_data.taskid }}"
      register: taskinfo
      until: taskinfo.meta.response_data.percent == 100
      retries: 30
      delay: 5
      failed_when: taskinfo.meta.response_data.state == 'error'

Return Values

Common return values are documented here, the following are the fields unique to this module:

Key

Description

meta

dictionary

The result of the request.

Returned: always

request_url

string

The full url requested.

Returned: always

Sample: "/sys/login/user"

response_code

integer

The status of api request.

Returned: always

Sample: 0

response_data

list / elements=string

The api response.

Returned: always

response_message

string

The descriptive message of the api response.

Returned: always

Sample: "OK."

system_information

dictionary

The information of the target system.

Returned: always

rc

integer

The status the request.

Returned: always

Sample: 0

version_check_warning

list / elements=string

Warning if the parameters used in the playbook are not supported by the current FortiManager version.

Returned: complex

Authors

  • Xinwei Du (@dux-fortinet)

  • Xing Li (@lix-fortinet)

  • Jie Xue (@JieX19)

  • Link Zheng (@chillancezen)

  • Frank Shen (@fshen01)

  • Hongbin Lu (@fgtdev-hblu)