thalesgroup.ciphertrust.dpg_protection_policy_save module – Manage DPG protection policies governing crypto operations
Note
This module is part of the thalesgroup.ciphertrust collection (version 1.0.0).
To install it, use: ansible-galaxy collection install thalesgroup.ciphertrust
.
To use it in a playbook, specify: thalesgroup.ciphertrust.dpg_protection_policy_save
.
New in thalesgroup.ciphertrust 1.0.0
Synopsis
This is a Thales CipherTrust Manager module for working with the CipherTrust Manager APIs, more specifically with domains management API
Refer https://thalesdocs.com/ctp/con/dpg/latest/admin/index.html for API documentation
Parameters
Parameter |
Comments |
---|---|
Algorithm to be used during crypto operations |
|
If true, null or single-character inputs are passed untransformed. If false, row transformation fails Choices:
|
|
ID of the Characterset |
|
IV to be used during crypto operations |
|
Name of the key |
|
this holds the connection parameters required to communicate with an instance of CipherTrust Manager (CM) holds IP/FQDN of the server, username, password, and port |
|
admin password of CM |
|
CM Server IP or FQDN |
|
Port on which CM server is listening Default: |
|
internal or private IP of the CM Server, if different from the server_ip |
|
admin username of CM |
|
if SSL verification is required Choices:
|
|
Unique name for the protection policy |
|
Operation to be performed Choices:
|
|
Identifier of the access policy to be patched |
|
Tweak data to be used during crypto operations |
|
Tweak algorithm to be used during crypto operations Choices:
|
Examples
- name: "Create Access Policy"
thalesgroup.ciphertrust.dpg_protection_policy_save:
localNode:
server_ip: "IP/FQDN of CipherTrust Manager"
server_private_ip: "Private IP in case that is different from above"
server_port: 5432
user: "CipherTrust Manager Username"
password: "CipherTrust Manager Password"
verify: false
op_type: create
- name: "Patch Access Policy"
thalesgroup.ciphertrust.dpg_protection_policy_save:
localNode:
server_ip: "IP/FQDN of CipherTrust Manager"
server_private_ip: "Private IP in case that is different from above"
server_port: 5432
user: "CipherTrust Manager Username"
password: "CipherTrust Manager Password"
verify: false
op_type: patch