This module is no longer maintained as it has been integrated into the nac-aci module.
Manages ACI Management Access Policy
Location in GUI:
Fabric
» Fabric Policies
» Policies
» Pod
» Management Access
module "aci_management_access_policy" {
source = "netascode/management-access-policy/aci"
version = ">= 0.1.0"
name = "MAP1"
description = "My Description"
telnet_admin_state = true
telnet_port = 2023
ssh_admin_state = true
ssh_password_auth = true
ssh_port = 2022
ssh_aes128_ctr = false
ssh_aes128_gcm = false
ssh_aes192_ctr = false
ssh_aes256_ctr = false
ssh_aes256_gcm = false
ssh_chacha = false
ssh_hmac_sha1 = false
ssh_hmac_sha2_256 = false
ssh_hmac_sha2_512 = false
ssh_curve25519_sha256 = false
ssh_curve25519_sha256_libssh = false
ssh_dh1_sha1 = false
ssh_dh14_sha1 = false
ssh_dh14_sha256 = false
ssh_dh16_sha512 = false
ssh_ecdh_sha2_nistp256 = false
ssh_ecdh_sha2_nistp384 = false
ssh_ecdh_sha2_nistp521 = false
https_admin_state = true
https_client_cert_auth_state = false
https_port = 2443
https_dh = 2048
https_tlsv1 = true
https_tlsv1_1 = true
https_tlsv1_2 = false
https_tlsv1_3 = false
https_keyring = "KR1"
http_admin_state = true
http_port = 2080
}
Name | Version |
---|---|
terraform | >= 1.0.0 |
aci | >= 2.0.0 |
Name | Version |
---|---|
aci | >= 2.0.0 |
Name | Description | Type | Default | Required |
---|---|---|---|---|
name | Management access policy name. | string |
n/a | yes |
description | Description. | string |
"" |
no |
telnet_admin_state | Telnet admin state. | bool |
false |
no |
telnet_port | Telnet port. | number |
23 |
no |
ssh_admin_state | SSH admin state. | bool |
true |
no |
ssh_port | SSH port. | number |
22 |
no |
ssh_password_auth | SSH password authentication. | bool |
true |
no |
ssh_aes128_ctr | aes128-ctr cipher. | bool |
true |
no |
ssh_aes128_gcm | aes128-gcm cipher. | bool |
true |
no |
ssh_aes192_ctr | aes192-ctr cipher. | bool |
true |
no |
ssh_aes256_ctr | aes256-ctr cipher. | bool |
true |
no |
ssh_aes256_gcm | aes256-gcm cipher. | bool |
false |
no |
ssh_chacha | chacha cipher. | bool |
true |
no |
ssh_hmac_sha1 | hmac-sha1 message authentication code. | bool |
true |
no |
ssh_hmac_sha2_256 | hmac-sha2-256 message authentication code. | bool |
true |
no |
ssh_hmac_sha2_512 | hmac-sha2-512 message authentication code. | bool |
true |
no |
ssh_curve25519_sha256 | curve25519-sha256 kex algorithm. | bool |
false |
no |
ssh_curve25519_sha256_libssh | curve25519-sha256 libssh.org kex algorithm. | bool |
false |
no |
ssh_dh1_sha1 | diffie-hellman-group1-sha1 kex algorithm. | bool |
false |
no |
ssh_dh14_sha1 | diffie-hellman-group14-sha1 kex algorithm. | bool |
false |
no |
ssh_dh14_sha256 | diffie-hellman-group14-sha256 kex algorithm. | bool |
false |
no |
ssh_dh16_sha512 | diffie-hellman-group16-sha512 kex algorithm. | bool |
false |
no |
ssh_ecdh_sha2_nistp256 | ecdh-sha2-nistp256 kex algorithm. | bool |
false |
no |
ssh_ecdh_sha2_nistp384 | ecdh-sha2-nistp384 kex algorithm. | bool |
false |
no |
ssh_ecdh_sha2_nistp521 | ecdh-sha2-nistp521 kex algorithm. | bool |
false |
no |
https_admin_state | HTTPS admin state. | bool |
false |
no |
https_client_cert_auth_state | HTTPS client certificate authentication state. | bool |
false |
no |
https_port | HTTPS port. | number |
443 |
no |
https_dh | HTTPS Diffie-Hellman group. Choices: 1024 , 2048 , 4096 or none . |
string |
"none" |
no |
https_tlsv1 | HTTPS TLS v1. | bool |
false |
no |
https_tlsv1_1 | HTTPS TLS v1.1. | bool |
true |
no |
https_tlsv1_2 | HTTPS TLS v1.2. | bool |
true |
no |
https_tlsv1_3 | HTTPS TLS v1.3. | bool |
false |
no |
https_keyring | HTTPS keyring name. | string |
"" |
no |
http_admin_state | HTTP admin state. | bool |
false |
no |
http_port | HTTP port. | number |
80 |
no |
Name | Description |
---|---|
dn | Distinguished name of commPol object. |
name | Management access policy name. |
Name | Type |
---|---|
aci_rest_managed.commHttp | resource |
aci_rest_managed.commHttps | resource |
aci_rest_managed.commPol | resource |
aci_rest_managed.commRsKeyRing | resource |
aci_rest_managed.commSsh | resource |
aci_rest_managed.commTelnet | resource |