security_endpoint_to_endpoint_policies - Endpoint to Endpoint Policy Resource

Added in version 1.0.0.

Synopsis

Endpoint to Endpoint Policy Resource.

Use API “/resource-api/v2/security/endpoint-to-endpoint-policies”.

Requirements

The below requirements are needed on the host that executes this module.

  • ansible>=2.17.0

Parameters

  • state The state of the module. "present" means create or update the resource, "absent" means delete the resource.type: strchoices: ['present', 'absent']default: present
  • force_behavior Specify this option to force the method to use to interact with the resource.type: strchoices: ['none', 'read', 'create', 'update', 'delete']default: none
  • bypass_validation Bypass validation of the module.type: booldefault: False
  • params The parameters of the module.[Required]type: dict
    • primary_key [Required]type: str
    • enabled type: bool
    • users type: listelements: dict
      • primary_key type: str
      • datasource type: strchoices: ['auth/ad-groups', 'auth/user-groups', 'auth/users']
    • sources type: listelements: dict
      • primary_key type: str
      • datasource type: strchoices: ['endpoint/ztna-tags']
    • services type: listelements: dict
      • primary_key type: str
      • datasource type: strchoices: ['security/service-groups', 'security/services']
    • action type: strchoices: ['accept', 'deny']
    • schedule type: dict
      • primary_key type: str
      • datasource type: strchoices: ['security/onetime-schedules', 'security/recurring-schedules', 'security/schedule-groups']
    • comments type: str
    • profile_group type: dict
      • group type: dict
        • primary_key type: str
        • datasource type: str
      • force_cert_inspection type: bool
    • log_traffic type: strchoices: ['all', 'disable', 'utm']

Examples

- name: Security endpoint to endpoint policies
  hosts: fortisase
  gather_facts: false
  vars:
    primary_key: "saas_app_ansible"
  tasks:
    - name: Create/Update security endpoint to endpoint policies
      fortinet.fortisase.security_endpoint_to_endpoint_policies:
        state: present
        params:
          primary_key: "{{ primary_key }}"
          enabled: true
          users:
            - primary_key: "gui_test"
              datasource: "auth/user-groups"
          services:
            - primary_key: "ALL_TCP"
              datasource: "security/services"
          action: "accept"
          log_traffic: "all"
          schedule:
            primary_key: "always"
            datasource: "security/recurring-schedules"
    - name: Delete security endpoint to endpoint policies
      fortinet.fortisase.security_endpoint_to_endpoint_policies:
        state: absent
        params:
          primary_key: "{{ primary_key }}"

Return Values

  • http_code type: intreturned: always
  • response type: rawreturned: always

Authors

  • Xinwei Du (@dux-fortinet)