security_endpoint_to_endpoint_policies - Endpoint to Endpoint Policy Resource
Added in version 1.0.0.
Synopsis
Endpoint to Endpoint Policy Resource.
Use API “/resource-api/v2/security/endpoint-to-endpoint-policies”.
Requirements
The below requirements are needed on the host that executes this module.
ansible>=2.17.0
Parameters
- state The state of the module. "present" means create or update the resource, "absent" means delete the resource.type: strchoices: ['present', 'absent']default: present
- force_behavior Specify this option to force the method to use to interact with the resource.type: strchoices: ['none', 'read', 'create', 'update', 'delete']default: none
- bypass_validation Bypass validation of the module.type: booldefault: False
- params The parameters of the module.[Required]type: dict
- primary_key [Required]type: str
- enabled type: bool
- users type: listelements: dict
- primary_key type: str
- datasource type: strchoices: ['auth/ad-groups', 'auth/user-groups', 'auth/users']
- sources type: listelements: dict
- primary_key type: str
- datasource type: strchoices: ['endpoint/ztna-tags']
- services type: listelements: dict
- primary_key type: str
- datasource type: strchoices: ['security/service-groups', 'security/services']
- action type: strchoices: ['accept', 'deny']
- schedule type: dict
- primary_key type: str
- datasource type: strchoices: ['security/onetime-schedules', 'security/recurring-schedules', 'security/schedule-groups']
- comments type: str
- profile_group type: dict
- group type: dict
- primary_key type: str
- datasource type: str
- force_cert_inspection type: bool
- group type: dict
- log_traffic type: strchoices: ['all', 'disable', 'utm']
Examples
- name: Security endpoint to endpoint policies
hosts: fortisase
gather_facts: false
vars:
primary_key: "saas_app_ansible"
tasks:
- name: Create/Update security endpoint to endpoint policies
fortinet.fortisase.security_endpoint_to_endpoint_policies:
state: present
params:
primary_key: "{{ primary_key }}"
enabled: true
users:
- primary_key: "gui_test"
datasource: "auth/user-groups"
services:
- primary_key: "ALL_TCP"
datasource: "security/services"
action: "accept"
log_traffic: "all"
schedule:
primary_key: "always"
datasource: "security/recurring-schedules"
- name: Delete security endpoint to endpoint policies
fortinet.fortisase.security_endpoint_to_endpoint_policies:
state: absent
params:
primary_key: "{{ primary_key }}"
Return Values
- http_code type: intreturned: always
- response type: rawreturned: always