Cisco Security Tasks

This chapter contains the following sections:

Configure ACL

Summary
Configure an ACL for the Security Context in a PIX ASA.
Description
This task configures an access control list (ACL) for the security context in a private internet exchange (PIX) adaptive security appliance (ASA).
Inputs
Input Description Mappable To Type Mandatory
Select Device Select a security device (ASA or ASAv) networking_​device
Select Device Select a security device (ASA or ASAv) NETWORKING_​ASA_​DEVICE
Context Name Choose the security context name networking_​security_​context_​name
ACL Name Provide an ACL name gen_​text_​input
Interface Name Select the interface to apply the ACL ASAInterface​Identity
Permit Check or unchecked to permit or deny the traffic.​ Default is to permit traffic.​
In​Bound Traffic Check to allow the inbound flow of the traffic.​ By default inbound traffic is allowed.​
Protocol Choose a protocol for the rule ACLDevice​Protocol​Identity Y
Source IP Address/IPv6 Prefix Enter a source IP address for the ACL.​ Include a network prefix for IPv6.​ For example: 12.​23.​34.​45 (IPv4); 2001:db8:3c4d:15::/64 IPV6.​ gen_​text_​input
Source Net Mask Enter a source network mask for the ACL.​ Not required for IPv6.​ gen_​text_​input
Source Port Range Enter a source port or port range for the ACL.​ For example: 255 or 1-200.​ gen_​text_​input
Destination IP Address/IPv6 Prefix Enter a destination IP address for the interface.​ Include a network prefix for IPv6.​ For example: 12.​23.​34.​45 (IPv4); 2001:db8:3c4d:15::/64 IPV6.​ gen_​text_​input
Destination Net Mask Enter a destination network mask for the ACL.​ Not required for IPv6.​ gen_​text_​input
Destination Port Range Enter a destination port or port range for the ACL.​ For example: 255 or 1-200.​ gen_​text_​input
Copy Running configuration to Startup configuration Check this option to copy the running configuration to the startup configuration.​ By default, this field is unchecked.​
Outputs
Output Description Type
OUTPUT_​NETWORKING_​DEVICE_​INTERFACE Network device interface on which selected operation performed.​ networking_​device_​interface
OUTPUT_​ASA_​DEVICE_​WITH_​CONTEXT_​IDENTITY ASA Device Identity NETWORKING_​ASA_​DEVICE

Configure Cisco ASA Firewall Mode

Summary
Description
Inputs
Input Description Mappable To Type Mandatory
Device IP Enter a device IP address.​ Ex:98.​12.​34.​12 gen_​text_​input Y
HTTP Port The HTTPS port number of the ASA device gen_​text_​input Y
User Name Provide a user name gen_​text_​input
Password Password.​ password
Mode Choose a context firewall mode (router or transparent).​ By default router is selected.​ gen_​text_​input
Outputs
No Outputs

Configure Context Interface

Summary
Configure the interfaces in the security context of a PIX ASA.
Description
This task configures the interfaces in the security context of a private internet exchange (PIX) adaptive security appliance (ASA).
Inputs
Input Description Mappable To Type Mandatory
Select Device Select a security device (ASA or ASAv) networking_​device Y
Context Name Choose a security context name networking_​security_​context_​name Y
Interface Name =Choose the interface name ASAInterface​Identity Y
Interface Alias Provide an alias name for the interface gen_​text_​input
IP Address/IPv6 Prefix Enter an IP address for the interface.​ Include a network prefix for IPv6.​ For example: 12.​23.​34.​45 (IPv4); 2001:db8:3c4d:15::/64 IPV6.​ gen_​text_​input
Net Mask Enter a network mask for the interfaces.​ Not required for IPv6.​ gen_​text_​input
Copy Running configuration to Startup configuration Check this option to copy the running configuration to the startup configuration.​ By default, this field is unchecked.​
Outputs
Output Description Type
OUTPUT_​NETWORKING_​DEVICE_​INTERFACE Network device interface on which selected operation performed.​ networking_​device_​interface
OUTPUT_​ASA_​DEVICE_​WITH_​CONTEXT_​IDENTITY ASA Device Identity NETWORKING_​ASA_​DEVICE
OUTPUT_​ASA_​DEVICE_​CONTEXT_​INTERFACE_​ALIAS ASA Device Identity ASAInterface​Identity

Configure License

Summary
Description
Inputs
Input Description Mappable To Type Mandatory
Select Device Select a security device (ASA or ASAv) networking_​device Y
License Name Provide a license name gen_​text_​input Y
Copy Running configuration to Startup configuration Check this option to copy the running configuration to the startup configuration.​ By default, this field is unchecked.​
Outputs
Output Description Type
DATACENTER Name of the Datacenter on which the selected operation was performed datacenter​Name
DEVICE_​IP IP address of the device on which the selected operation was performed gen_​text_​input
OUTPUT_​NETWORKING_​DEVICE Network device on which selected operation performed.​ networking_​device
OUTPUT_​LICENSE_​NAME License Name on which the selected operation was performed gen_​text_​input

Configure Network Object NAT

Summary
Configure an object-based NAT using this task.
Description
This task configures an object-based network address translation (NAT).
Inputs
Input Description Mappable To Type Mandatory
Select Device Select a security device (ASA or ASAv) networking_​device Y
Real Interface Select the real interface Network​Named​Interface​Identity
Mapped Interface Select the mapped interface Network​Named​Interface​Identity
Mode Choose the NAT mode NAT_​mode_​type Y
Network Object Name Provide a network object name gen_​text_​input Y
Real IP Address Provide a host IP address (for example: 10.​1.​1.​1), IP range (10.​1.​1.​1-10.​1.​1.​20) or subnet (10.​1.​1.​0/255.​255.​255.​0) gen_​text_​input Y
Type Choose the type for mapped IP addresses NAT_​type
Network Object Select the network object NATSource​Or​Destination​Identity
Network Object Group Select the network object group ASANetwork​Object​Group​Identity
Host IP Provide a host IP.​ For example: 10.​1.​1.​1 gen_​text_​input
Interface Check to enable the interface.​ By default this field is unchecked.​ Boolean
PAT PAT Boolean
Protocol Specify protocol for the rule NATDevice​Protocol​Identity
Real Port Real Port gen_​text_​input
Mapped Port Mapped Port gen_​text_​input
Copy Running configuration to Startup configuration Select this option to copy running configuration to startup configuration
Outputs
Output Description Type
DATACENTER Name of the Datacenter on which the selected operation was performed datacenter​Name
DEVICE_​IP IP address of the device on which the selected operation was performed gen_​text_​input
OUTPUT_​NETWORKING_​DEVICE Network device on which selected operation performed.​ networking_​device
OUTPUT_​SECURITY_​CONTEXT_​NAME Security Context name on which selected operation performed.​ networking_​security_​context_​name
OUTPUT_​NAT_​SOURCE_​REAL_​OBJECT_​IDENTITY NAT SOURCE REAL NETWORK OBJECT IDENTITY NATSource​Or​Destination​Identity
OUTPUT_​NAT_​REAL_​INTERFACE_​IDENTITY ASA NAT REAL INTERFACE IDENTITY Network​Named​Interface​Identity
OUTPUT_​NAT_​MAPPED_​INTERFACE_​IDENTITY ASA NAT MAPPED INTERFACE IDENTITY Network​Named​Interface​Identity
OUTPUT_​NAT_​SOURCE_​MODE_​IDENTITY NAT SOURCE MODE NAT_​mode_​type
OUTPUT_​NAT_​SOURCE_​MAPPED_​OBJECT_​IDENTITY NAT SOURCE MAPPED NETWORK OBJECT IDENTITY NATSource​Or​Destination​Identity
OUTPUT_​NAT_​SOURCE_​MAPPED_​OBJECT_​GROUP_​IDENTITY NAT SOURCE MAPPED NETWORK OBJECT GROUP IDENTITY ASANetwork​Object​Group​Identity
OUTPUT_​ASA_​PAT_​REAL_​PORT PAT Real Port gen_​text_​input
OUTPUT_​ASA_​PAT_​MAPPED_​PORT PAT Mapped Port gen_​text_​input

Configure Sub Interface

Summary
Configure a sub-interface for a PIX ASA.
Description
This task configures a sub-interface in a private internet exchange (PIX) adaptive security appliance (ASA).
Inputs
Input Description Mappable To Type Mandatory
Select Device Select a security device (ASA or ASAv) networking_​device Y
Physical Interface Name Select the physical interface name ASAInterface​Identity Y
Port Number Enter a valid port number for the subinterface.​ gen_​text_​input Y
Vlan ID Enter a VLAN ID for this interface between 1 and4094.​ gen_​text_​input Y
Enable Interface Check this to enable the interface.​ By default this field is checked.​
Copy Running configuration to Startup configuration Check this option to copy the running configuration to the startup configuration.​ By default, this field is unchecked.​
Outputs
Output Description Type
OUTPUT_​NETWORKING_​DEVICE_​INTERFACE Network device interface on which selected operation performed.​ networking_​device_​interface
OUTPUT_​ASA_​DEVICE_​INTERFACE_​IDENTITY ASA Interface Identity ASAContext​Interface​Identity

Configure Twice NAT

Summary
Description
Inputs
Input Description Mappable To Type Mandatory
Select Device Select a security device (ASA or ASAv) networking_​device Y
Real Interface Select the real interface Network​Named​Interface​Identity
Mapped Interface Select the mapped interface Network​Named​Interface​Identity
Source Mode Choose source mode, either static or dynamic.​ By default, static is selected.​ NAT_​mode_​type Y
Source Real Object Type Choose a source real object type ASADevice​NATNetwork​Object​Type Y
Source Real Network Object Select a source real network object NATSource​Or​Destination​Identity
Source Real Network Object Group Select a source real network object group ASANetwork​Object​Group​Identity
Source Mapped Object Type Select a source mapped object type ASADevice​NATNetwork​Object​Type Y
Source Mapped Network Object Select a mapped network object NATSource​Or​Destination​Identity
Source Mapped Object Group Select a source mapped object group ASANetwork​Object​Group​Identity
Source Mapped Interface Check this option to apply the source real interface to source mapped interface.​ By default this field is unchecked.​
Destination Mode Mode is static by default and non-editable for destination NAT_​mode_​type
Destination Real Object Type Select a destination real object type ASADevice​NATNetwork​Object​Type
Destination Real Network Object Select a destination real network object NATSource​Or​Destination​Identity
Destination Real Network Object Group Select a destination network object group ASANetwork​Object​Group​Identity
Destination Mapped Object Type Select a destination mapped object type ASADevice​NATNetwork​Object​Type
Destination Mapped Network Object Select the destination mapped network object NATSource​Or​Destination​Identity
Destination Mapped Object Group Select a destination mapped object group ASANetwork​Object​Group​Identity
Destination Mapped Interface Check this option to apply the destination real interface to destination mapped interface.​ By default this field is unchecked.​
Is PAT ? Check to enable PAT.​ By default this field is unchecked.​
Description Provide PAT description gen_​text_​input
Copy Running configuration to Startup configuration Check this option to copy the running configuration to the startup configuration.​ By default, this field is unchecked.​
Outputs
Output Description Type
DATACENTER Name of the Datacenter on which the selected operation was performed datacenter​Name
DEVICE_​IP IP address of the device on which the selected operation was performed gen_​text_​input
OUTPUT_​NETWORKING_​DEVICE Network device on which selected operation performed.​ networking_​device
OUTPUT_​SECURITY_​CONTEXT_​NAME Security Context name on which selected operation performed.​ networking_​security_​context_​name
OUTPUT_​NAT_​REAL_​INTERFACE_​IDENTITY ASA NAT REAL INTERFACE IDENTITY Network​Named​Interface​Identity
OUTPUT_​NAT_​MAPPED_​INTERFACE_​IDENTITY ASA NAT MAPPED INTERFACE IDENTITY Network​Named​Interface​Identity
OUTPUT_​NAT_​SOURCE_​MODE_​IDENTITY NAT SOURCE MODE NAT_​mode_​type
OUTPUT_​NAT_​SOURCE_​REAL_​OBJECT_​IDENTITY NAT SOURCE REAL NETWORK OBJECT IDENTITY NATSource​Or​Destination​Identity
OUTPUT_​NAT_​SOURCE_​REAL_​OBJECT_​GROUP_​IDENTITY NAT SOURCE REAL NETWORK OBJECT GROUP IDENTITY ASANetwork​Object​Group​Identity
OUTPUT_​NAT_​SOURCE_​MAPPED_​OBJECT_​IDENTITY NAT SOURCE MAPPED NETWORK OBJECT IDENTITY NATSource​Or​Destination​Identity
OUTPUT_​NAT_​SOURCE_​MAPPED_​OBJECT_​GROUP_​IDENTITY NAT SOURCE MAPPED NETWORK OBJECT GROUP IDENTITY ASANetwork​Object​Group​Identity
OUTPUT_​NAT_​DESTINATION_​MODE_​IDENTITY NAT DESTINATION MODE NAT_​mode_​type
OUTPUT_​NAT_​DESTINATION_​REAL_​OBJECT_​IDENTITY NAT DESTINATION REAL NETWORK OBJECT IDENTITY NATSource​Or​Destination​Identity
OUTPUT_​NAT_​DESTINATION_​REAL_​OBJECT_​GROUP_​IDENTITY NAT DESTINATION REAL NETWORK OBJECT GROUP IDENTITY ASANetwork​Object​Group​Identity
OUTPUT_​NAT_​DESTINATION_​MAPPED_​OBJECT_​IDENTITY NAT DESTINATION MAPPED NETWORK OBJECT IDENTITY NATSource​Or​Destination​Identity
OUTPUT_​NAT_​DESTINATION_​MAPPED_​OBJECT_​GROUP_​IDENTITY NAT DESTINATION MAPPED NETWORK OBJECT GROUP IDENTITY ASANetwork​Object​Group​Identity
OUTPUT_​ASA_​SERVICE_​REAL_​OBJECT_​IDENTITY NAT REAL SERVICE OBJECT IDENTITY networking_​device_​service_​object_​name_​identity
OUTPUT_​ASA_​SERVICE_​MAPPED_​OBJECT_​IDENTITY NAT MAPPED SERVICE OBJECT IDENTITY networking_​device_​service_​object_​name_​identity

Create Network Object

Summary
Create a network object.
Description
This task creates a network object.
Inputs
Input Description Mappable To Type Mandatory
Select Device Select a security device (ASA or ASAv) networking_​device Y
Network Object Name Provide a network object name gen_​text_​input Y
IP Address Provide an IP address (for example: 10.​1.​1.​1), IP range (10.​1.​1.​1-10.​1.​1.​20) or subnet (10.​1.​1.​0/255.​255.​255.​0) gen_​text_​input Y
Description Provide a network object description gen_​text_​input
Copy Running configuration to Startup configuration Check this option to copy the running configuration to the startup configuration.​ By default, this field is unchecked.​
Outputs
Output Description Type
DATACENTER Name of the Datacenter on which the selected operation was performed datacenter​Name
DEVICE_​IP IP address of the device on which the selected operation was performed gen_​text_​input
OUTPUT_​NETWORKING_​DEVICE Network device on which selected operation performed.​ networking_​device
OUTPUT_​SECURITY_​CONTEXT_​NAME Security Context name on which selected operation performed.​ networking_​security_​context_​name
OUTPUT_​NETWORK_​OBJECT_​IDENTITY Network Object Identity NATSource​Or​Destination​Identity
OUTPUT_​NETWORK_​OBJECT Network Object gen_​text_​input
OUTPUT_​NETWORK_​OBJECT_​MEMBER Network Object Host/Range/Network gen_​text_​input

Create Network Object Group

Summary
Description
Inputs
Input Description Mappable To Type Mandatory
Select Device Select a security device (ASA or ASAv) networking_​device Y
Network Object Group Name Provide a network object group name gen_​text_​input Y
Description Provide a network object group description gen_​text_​input
Host Provide one or more host addresses separated with commas.​ For example: 10.​10.​10.​10, 20.​20.​20.​20 (IPv4) or X:X:X:X::X (IPv6).​ gen_​text_​input
Network Address Provide one or more network addresses separated with commas.​ For example: 20.​20.​20.​0/255.​255.​255.​0 (IPv4) or X:X:X:X::X/1-128 (IPv6).​ gen_​text_​input
Network Object Select one or more network object NATSource​Or​Destination​Identity
Copy Running configuration to Startup configuration Check this option to copy the running configuration to the startup configuration.​ By default, this field is unchecked.​
Outputs
Output Description Type
DATACENTER Name of the Datacenter on which the selected operation was performed datacenter​Name
DEVICE_​IP IP address of the device on which the selected operation was performed gen_​text_​input
ASA_​NETWORK_​OBJECT_​GROUP_​NAME Network Object Group Name gen_​text_​input
ASA_​NETWORK_​OBJECT_​GROUP_​HOST Network Object Group Host gen_​text_​input
ASA_​NETWORK_​OBJECT_​GROUP_​IP Network Object Group IP Address gen_​text_​input
ASA_​NETWORK_​OBJECT_​NAME Network Object Name ASANetwork​Object​Identity
ASA_​NETWORK_​OBJECT_​GROUP_​IDENTITY Network Object Group Identity ASANetwork​Object​Group​Identity

Create Security Context

Summary
Create a Security Context for a PIX ASA.
Description
This task creates a security context in a private internet exchange (PIX) adaptive security appliance (ASA).
Inputs
Input Description Mappable To Type Mandatory
Select Device Select a security device (ASA or ASAv) networking_​device Y
Context Name Provide a security context name gen_​text_​input Y
Context Description Provide a context description gen_​text_​input Y
File Name Provide a security context configuration file name.​ Only .​cfg files are supported.​ For example: sample.​cfg.​ gen_​text_​input
Out​Side Interface Name Select an outside interface to apply the context ASAInterface​Identity Y
Inside Interfaces Select a one or more inside interfaces to apply the context ASAInside​Interface​Identity Y
Out​Side Interface Name Select an outside interface to apply the context ASAContext​Interface​Identity
Inside Interfaces Select a one or more inside interfaces to apply the context ASAContext​Interface​Identity
Management Interface Select a management interface to apply the context ASAContext​Interface​Identity
Mode Choose a context firewall mode: routed or transparent gen_​text_​input
Copy Running configuration to Startup configuration Check this option to copy the running configuration to the startup configuration.​ By default, this field is unchecked.​
Outputs
Output Description Type
DATACENTER Name of the Datacenter on which the selected operation was performed datacenter​Name
DEVICE_​IP IP address of the device on which the selected operation was performed gen_​text_​input
OUTPUT_​NETWORKING_​DEVICE Network device on which selected operation performed.​ networking_​device
OUTPUT_​SECURITY_​CONTEXT_​NAME Security Context name on which selected operation performed.​ networking_​security_​context_​name
OUTPUT_​SECURITY_​CONTEXT_​NAME_​DESC Security Context Description gen_​text_​input
OUTPUT_​SECURITY_​CONTEXT_​CONFIG_​FILE_​NAME Security Context configuration file Name gen_​text_​input
OUTPUT_​SECURITY_​CONTEXT_​OUTSIDE_​INTERFACES Out​Side Interface name to apply the Context gen_​text_​input
OUTPUT_​SECURITY_​CONTEXT_​OUTSIDE_​INTERFACES_​IDENTITY Out​Side Interface Identity to apply the Context ASAInterface​Identity
OUTPUT_​SECURITY_​CONTEXT_​INSIDE_​INTERFACES Inside Interfaces to apply the Context gen_​text_​input
OUTPUT_​SECURITY_​CONTEXT_​INSIDE_​INTERFACES_​IDENTITY Inside Interfaces Identity to apply the Context ASAInterface​Identity
OUTPUT_​SECURITY_​CONTEXT_​MGMT_​INTERFACES Management Interface name to apply the Context ASAInterface​Identity
OUTPUT_​SECURITY_​CONTEXT_​OUTSIDE_​INTERFACES_​ALIAS Out​Side Interface alias name to apply the Context ASAInterface​Identity
OUTPUT_​SECURITY_​CONTEXT_​INSIDE_​INTERFACES_​ALIAS Inside Interfaces alias to apply the Context ASAInterface​Identity
OUTPUT_​SECURITY_​CONTEXT_​MGMT_​INTERFACES_​ALIAS Management Interface alias name to apply the Context ASAInterface​Identity
OUTPUT_​SECURITY_​CONTEXT_​FIREWALL_​MODE Firewall mode gen_​text_​input
OUTPUT_​ASA_​DEVICE_​WITH_​CONTEXT_​IDENTITY ASA Device Identity NETWORKING_​ASA_​DEVICE

Create Service Object

Summary
Create a service object.
Description
This task creates a service object.
Inputs
Input Description Mappable To Type Mandatory
Select Device Select a security device (ASA or ASAv) networking_​device Y
Service Object Name Provide a service object name gen_​text_​input Y
Description Description gen_​text_​input
Protocol Choose a protocol for the rule NATDevice​Protocol​Identity
Source Operator Select an operator for the source ASADevice​Source​Operator​Identity
Source Port Enter a source port.​ if the range operator is selected provide a port range, for example 20-30.​ gen_​text_​input
Destination Operator Select an operator for the destination ASADevice​Destination​Operator​Identity
Destination Port Enter a destination port.​ if the range operator is selected provide a port range, for example 20-30.​ gen_​text_​input
Copy Running configuration to Startup configuration Check this option to copy the running configuration to the startup configuration.​ By default, this field is unchecked.​
Outputs
Output Description Type
DATACENTER Name of the Datacenter on which the selected operation was performed datacenter​Name
DEVICE_​IP IP address of the device on which the selected operation was performed gen_​text_​input
OUTPUT_​NETWORKING_​DEVICE Network device on which selected operation performed.​ networking_​device
OUTPUT_​SECURITY_​CONTEXT_​NAME Security Context name on which selected operation performed.​ networking_​security_​context_​name
OUTPUT_​ASA_​SERVICE_​OBJECT_​NAME_​IDENTITY Service Object Name on which selected operation performed.​ networking_​device_​service_​object_​name_​identity

Delete Network Object

Summary
Delete a network object.
Description
This task deletes a network object.
Inputs
Input Description Mappable To Type Mandatory
Network Object Select the network object to deletet NATSource​Or​Destination​Identity Y
Copy Running configuration to Startup configuration Check this option to copy the running configuration to the startup configuration.​ By default, this field is unchecked.​
Outputs
Output Description Type
DATACENTER Name of the Datacenter on which the selected operation was performed datacenter​Name
DEVICE_​IP IP address of the device on which the selected operation was performed gen_​text_​input
OUTPUT_​NETWORKING_​DEVICE Network device on which selected operation performed.​ networking_​device
OUTPUT_​SECURITY_​CONTEXT_​NAME Security Context name on which selected operation performed.​ networking_​security_​context_​name
OUTPUT_​NETWORK_​OBJECT_​IDENTITY Network Object Identity NATSource​Or​Destination​Identity
OUTPUT_​NETWORK_​OBJECT Network Object gen_​text_​input

Delete Network Object Group

Summary
Description
Inputs
Input Description Mappable To Type Mandatory
Network Object Group Name Select a network object group to delete ASANetwork​Object​Group​Identity Y
Copy Running configuration to Startup configuration Check this option to copy the running configuration to the startup configuration.​ By default, this field is unchecked.​
Outputs
Output Description Type
DATACENTER Name of the Datacenter on which the selected operation was performed datacenter​Name
DEVICE_​IP IP address of the device on which the selected operation was performed gen_​text_​input
ASA_​NETWORK_​OBJECT_​GROUP_​NAME Network Object Group Name gen_​text_​input
ASA_​NETWORK_​OBJECT_​GROUP_​IDENTITY Network Object Group Identity ASANetwork​Object​Group​Identity

Delete Service Object

Summary
Delete a service object.
Description
This task deletes a service object.
Inputs
Input Description Mappable To Type Mandatory
Service Object Name Select a service object to delete networking_​device_​service_​object_​name_​identity Y
Copy Running configuration to Startup configuration Check this option to copy the running configuration to the startup configuration.​ By default, this field is unchecked.​
Outputs
Output Description Type
DATACENTER Name of the Datacenter on which the selected operation was performed datacenter​Name
DEVICE_​IP IP address of the device on which the selected operation was performed gen_​text_​input
OUTPUT_​NETWORKING_​DEVICE Network device on which selected operation performed.​ networking_​device
OUTPUT_​SECURITY_​CONTEXT_​NAME Security Context name on which selected operation performed.​ networking_​security_​context_​name
OUTPUT_​ASA_​SERVICE_​OBJECT_​NAME_​IDENTITY Service Object Name on which selected operation performed.​ networking_​device_​service_​object_​name_​identity

Deploy ASAv OVF

Summary
Description
Inputs
Input Description Mappable To Type Mandatory
Select v​DC Choose a v​DC on which to perform the action v​DC Y
ASAv OVF Select an OVF URL Y
ASAv Policy Select an ASAv policy Y
Outputs
Output Description Type
DATACENTER Name of the Datacenter on which the selected operation was performed datacenter​Name
DEVICE_​IP IP address of the device on which the selected operation was performed gen_​text_​input
OUTPUT_​NETWORKING_​DEVICE_​NAME Network device name on which selected operation is performed.​ networking_​device_​name
OUTPUT_​VM_​ID ID of the VM on which the selected operation was performed vm

Remove Security Context

Summary
Remove the Security Context of a PIX ASA.
Description
This task removes the security context of a private internet exchange (PIX) adaptive security appliance (ASA).
Inputs
Input Description Mappable To Type Mandatory
Select Device Select a security device (ASA or ASAv) networking_​device Y
Context Name Select the name of the security context to delete networking_​security_​context_​name Y
Copy Running configuration to Startup configuration Check this option to copy the running configuration to the startup configuration.​ By default, this field is unchecked.​
Outputs
No Outputs

TrustSec Refresh

Summary
Description
Inputs
Input Description Mappable To Type Mandatory
Select Device Select a security device (ASA or ASAv) networking_​device Y
Copy Running configuration to Startup configuration Check this option to copy the running configuration to the startup configuration.​ By default, this field is unchecked.​
Outputs
Output Description Type
DATACENTER Name of the Datacenter on which the selected operation was performed datacenter​Name
DEVICE_​IP IP address of the device on which the selected operation was performed gen_​text_​input
OUTPUT_​NETWORKING_​DEVICE Network device on which selected operation performed.​ networking_​device
OUTPUT_​SECURITY_​CONTEXT_​NAME Security Context name on which selected operation performed.​ networking_​security_​context_​name