thalesgroup.ciphertrust.dpg_access_policy_save module – Manage DPG access policies governing data access

Note

This module is part of the thalesgroup.ciphertrust collection (version 1.0.0).

To install it, use: ansible-galaxy collection install thalesgroup.ciphertrust.

To use it in a playbook, specify: thalesgroup.ciphertrust.dpg_access_policy_save.

New in thalesgroup.ciphertrust 1.0.0

Synopsis

• This is a Thales CipherTrust Manager module for working with the CipherTrust Manager APIs, more specifically with DPG Access Policy API

• Refer https://thalesdocs.com/ctp/con/dpg/latest/admin/index.html for API documentation

Parameters

Parameter	Comments
default_error_replacement_value string	Value to be revealed if the type is 'Error Replacement Value'
default_masking_format_id string	Masking format used to reveal if the type is 'Masked Value'
default_reveal_type string	Value using which data should be revealed Choices: "Error Replacement Value" "Masked Value" "Ciphertext" "Plaintext"
description string	Description of the Access Policy
localNode dictionary / required	this holds the connection parameters required to communicate with an instance of CipherTrust Manager (CM) holds IP/FQDN of the server, username, password, and port
password string / required	admin password of CM
server_ip string / required	CM Server IP or FQDN
server_port integer / required	Port on which CM server is listening Default: 5432
server_private_ip string / required	internal or private IP of the CM Server, if different from the server_ip
user string / required	admin username of CM
verify boolean / required	if SSL verification is required Choices: false ← (default) true
name string	Access Policy Name
op_type string / required	Operation to be performed Choices: "create" "patch"
policy_id string	Identifier of the access policy to be patched
user_set_policy list / elements=dictionary	List of policies to be added to the access policy
error_replacement_value string	Value to be revealed if the type is 'Error Replacement Value'
masking_format_id string	Masking format used to reveal if the type is 'Masked Value'
reveal_type string	Value using which data should be revealed Choices: "Error Replacement Value" "Masked Value" "Ciphertext" "Plaintext"
user_set_id string	User set to which the policy is applied.

Examples

- name: "Create Access Policy"
  thalesgroup.ciphertrust.dpg_access_policy_save:
    localNode:
        server_ip: "IP/FQDN of CipherTrust Manager"
        server_private_ip: "Private IP in case that is different from above"
        server_port: 5432
        user: "CipherTrust Manager Username"
        password: "CipherTrust Manager Password"
        verify: false
    op_type: create

- name: "Patch Access Policy"
  thalesgroup.ciphertrust.dpg_access_policy_save:
    localNode:
        server_ip: "IP/FQDN of CipherTrust Manager"
        server_private_ip: "Private IP in case that is different from above"
        server_port: 5432
        user: "CipherTrust Manager Username"
        password: "CipherTrust Manager Password"
        verify: false
    op_type: patch

Authors

• Anurag Jain, Developer Advocate Thales Group

Collection links

Issue Tracker Homepage Repository (Sources)