TACACS+ Server¶
Overview¶
This document describes the API to configure AAA TACACS+ servers and their properties in BIG-IQ.
REST Endpoint: /mgmt/cm/access/working-config/apm/aaa/tacacsplus¶
Requests¶
GET /mgmt/cm/access/working-config/apm/aaa/tacacsplus/<id>¶
Request Parameters¶
None
Query Parameters¶
None
Response¶
HTTP/1.1 200 OK
| Name | Type | Description |
|---|---|---|
| address | string | Specify the IP addresses of the TACACS+ server to which APM can connect for AAA services. |
| usePool | string | Specify the TACACS+ servers for APM to use to authenticate users. Use Pool to create a high availability configuration. Use Direct to specify one TACACS+ server for APM to authenticate users. |
| pool | string | For the pool name, first create the pool and pool members. The LTM pool must be configured with the TACACS+ server ip’s as its pool members. Then, associate in this property. |
| authService | string | Specify the authentication service. |
| authType | string | Specify the authentication type. |
| encrypt | string | To encrypt and decrypt packets that are sent to or received from the server, enter ‘Enabled’. |
| port | number | Specify a service port number. The default Value is 49. |
| privLvl | string | Specify the privilege level for the request. |
| protocol | string | Specify the protocol associated with the value in the Service setting. |
| secret | string | To encrypt and decrypt packets that are sent to or received from the server, enter ‘Enabled’, and enter the secret key in the Secret. |
| service | string | Specify the type of service you want to provide. |
| name | string | The name of the object |
| partition | string | The BIG-IP partition where the object should be placed |
| subPath | string | The BIG-IP folder where the object should be placed |
| lsoDeviceReference | reference | Reference to the device |
| id | string | Id of the device. |
| name | string | Device name. Typically it is device’s hostname. |
| kind | string | Kind of the device. |
| machineId | string | Machine ID of the device. |
| link | string | URI link of the reference. |
| isLsoShared | boolean | Specifies if the location-specific object instance is shared across all devices. Use this only during POST. Warning: Do not flip this flag during PUT/PATCH operations. |
| deviceGroupReference | reference | Reference to the device group. |
| name | string | Name of the resource |
| kind | string | The kind of the resource. |
| link | string | URI link of the reference. |
| id | string | An ID of an application |
| kind | string | The kind of application. |
| selfLink | string | The selfLink of an application. |
Error Response¶
HTTP/1.1 400 Bad Request
This response status is related to error conditions. A detailed error message displays in the response.
HTTP/1.1 401 Unauthorized
This response happens when access is denied due to invalid credentials(no Permission).
Permissions¶
| Role | Allow |
|---|---|
| Application_Editor | Yes |
| Service_Catalog_Viewer | Yes |
| Service_Catalog_Editor | Yes |
| Trust_Discovery_Import | Yes |
| Access_View | Yes |
| Access_Edit | Yes |
| Access_Manager | Yes |
| Application_Manager | Yes |
| Application_Viewer | Yes |
| Trust_Discovery_Import | Yes |
| Access_Deploy | Yes |
| Access_Policy_Editor | Yes |
POST /mgmt/cm/access/working-config/apm/aaa/tacacsplus¶
Request Parameters¶
| Name | Type | Required | Description |
|---|---|---|---|
| address | string | False | Specify the IP addresses of the TACACS+ server to which APM can connect for AAA services. |
| usePool | string | False | Specify the TACACS+ servers for APM to use to authenticate users. Use Pool to create a high availability configuration. Use Direct to specify one TACACS+ server for APM to authenticate users. |
| pool | string | False | For the pool name, first create the pool and pool members. The LTM pool must be configured with the TACACS+ server ip’s as its pool members. Then, associate in this property. |
| authService | string | False | Specify the authentication service. |
| authType | string | False | Specify the authentication type. |
| encrypt | string | False | To encrypt and decrypt packets that are sent to or received from the server, enter ‘Enabled’. |
| port | number | False | Specify a service port number. The default Value is 49. |
| privLvl | string | False | Specify the privilege level for the request. |
| protocol | string | False | Specify the protocol associated with the value in the Service setting. |
| secret | string | False | To encrypt and decrypt packets that are sent to or received from the server, enter ‘Enabled’, and enter the secret key in the Secret. |
| service | string | False | Specify the type of service you want to provide. |
| name | string | True | The name of the object |
| partition | string | True | The BIG-IP partition where the object should be placed |
| subPath | string | False | The BIG-IP folder where the object should be placed |
| lsoDeviceReference | reference | False | Reference to the device |
| id | string | False | Id of the device. |
| link | string | False | URI link of the reference. |
| isLsoShared | boolean | True | Specifies if the location-specific object instance is shared across all devices. Use this only during POST. Warning: Do not flip this flag during PUT/PATCH operations. |
| deviceGroupReference | reference | False | Reference to the device group. |
| link | string | False | URI link of the reference. |
Query Parameters¶
None
Response¶
HTTP/1.1 200 OK
| Name | Type | Description |
|---|---|---|
| address | string | Specify the IP addresses of the TACACS+ server to which APM can connect for AAA services. |
| usePool | string | Specify the TACACS+ servers for APM to use to authenticate users. Use Pool to create a high availability configuration. Use Direct to specify one TACACS+ server for APM to authenticate users. |
| pool | string | For the pool name, first create the pool and pool members. The LTM pool must be configured with the TACACS+ server ip’s as its pool members. Then, associate in this property. |
| authService | string | Specify the authentication service. |
| authType | string | Specify the authentication type. |
| encrypt | string | To encrypt and decrypt packets that are sent to or received from the server, enter ‘Enabled’. |
| port | number | Specify a service port number. The default Value is 49. |
| privLvl | string | Specify the privilege level for the request. |
| protocol | string | Specify the protocol associated with the value in the Service setting. |
| secret | string | To encrypt and decrypt packets that are sent to or received from the server, enter ‘Enabled’, and enter the secret key in the Secret. |
| service | string | Specify the type of service you want to provide. |
| name | string | The name of the object |
| partition | string | The BIG-IP partition where the object should be placed |
| subPath | string | The BIG-IP folder where the object should be placed |
| lsoDeviceReference | reference | Reference to the device |
| id | string | Id of the device. |
| name | string | Device name. Typically it is device’s hostname. |
| kind | string | Kind of the device. |
| machineId | string | Machine ID of the device. |
| link | string | URI link of the reference. |
| isLsoShared | boolean | Specifies if the location-specific object instance is shared across all devices. Use this only during POST. Warning: Do not flip this flag during PUT/PATCH operations. |
| deviceGroupReference | reference | Reference to the device group. |
| name | string | Name of the resource |
| kind | string | The kind of the resource. |
| link | string | URI link of the reference. |
| id | string | An ID of an application |
| kind | string | The kind of application. |
| selfLink | string | The selfLink of an application. |
Error Response¶
HTTP/1.1 400 Bad Request
This response status is related to error conditions. A detailed error message displays in the response.
HTTP/1.1 401 Unauthorized
This response happens when access is denied due to invalid credentials(no Permission).
Permissions¶
| Role | Allow |
|---|---|
| Application_Editor | No |
| Service_Catalog_Viewer | No |
| Service_Catalog_Editor | No |
| Trust_Discovery_Import | No |
| Access_View | No |
| Access_Edit | Yes |
| Access_Manager | Yes |
| Application_Manager | No |
| Application_Viewer | No |
| Trust_Discovery_Import | No |
| Access_Deploy | No |
| Access_Policy_Editor | No |
PUT /mgmt/cm/access/working-config/apm/aaa/tacacsplus/<id>¶
Request Parameters¶
| Name | Type | Required | Description |
|---|---|---|---|
| address | string | False | Specify the IP addresses of the TACACS+ server to which APM can connect for AAA services. |
| usePool | string | False | Specify the TACACS+ servers for APM to use to authenticate users. Use Pool to create a high availability configuration. Use Direct to specify one TACACS+ server for APM to authenticate users. |
| pool | string | False | For the pool name, first create the pool and pool members. The LTM pool must be configured with the TACACS+ server ip’s as its pool members. Then, associate in this property. |
| authService | string | False | Specify the authentication service. |
| authType | string | False | Specify the authentication type. |
| encrypt | string | False | To encrypt and decrypt packets that are sent to or received from the server, enter ‘Enabled’. |
| port | number | False | Specify a service port number. The default Value is 49. |
| privLvl | string | False | Specify the privilege level for the request. |
| protocol | string | False | Specify the protocol associated with the value in the Service setting. |
| secret | string | False | To encrypt and decrypt packets that are sent to or received from the server, enter ‘Enabled’, and enter the secret key in the Secret. |
| service | string | False | Specify the type of service you want to provide. |
| name | string | False | The name of the object |
| partition | string | False | The BIG-IP partition where the object should be placed |
| subPath | string | False | The BIG-IP folder where the object should be placed |
| lsoDeviceReference | reference | False | Reference to the device |
| id | string | False | Id of the device. |
| name | string | False | Device name. Typically it is device’s hostname. |
| kind | string | False | Kind of the device. |
| machineId | string | False | Machine ID of the device. |
| link | string | False | URI link of the reference. |
| isLsoShared | boolean | False | Specifies if the location-specific object instance is shared across all devices. Use this only during POST. Warning: Do not flip this flag during PUT/PATCH operations. |
| deviceGroupReference | reference | False | Reference to the device group. |
| name | string | False | Name of the resource |
| kind | string | False | The kind of the resource. |
| link | string | False | URI link of the reference. |
| id | string | False | An ID of an application |
| kind | string | False | The kind of application. |
| selfLink | string | False | The selfLink of an application. |
Query Parameters¶
None
Response¶
HTTP/1.1 200 OK
| Name | Type | Description |
|---|---|---|
| address | string | Specify the IP addresses of the TACACS+ server to which APM can connect for AAA services. |
| usePool | string | Specify the TACACS+ servers for APM to use to authenticate users. Use Pool to create a high availability configuration. Use Direct to specify one TACACS+ server for APM to authenticate users. |
| pool | string | For the pool name, first create the pool and pool members. The LTM pool must be configured with the TACACS+ server ip’s as its pool members. Then, associate in this property. |
| authService | string | Specify the authentication service. |
| authType | string | Specify the authentication type. |
| encrypt | string | To encrypt and decrypt packets that are sent to or received from the server, enter ‘Enabled’. |
| port | number | Specify a service port number. The default Value is 49. |
| privLvl | string | Specify the privilege level for the request. |
| protocol | string | Specify the protocol associated with the value in the Service setting. |
| secret | string | To encrypt and decrypt packets that are sent to or received from the server, enter ‘Enabled’, and enter the secret key in the Secret. |
| service | string | Specify the type of service you want to provide. |
| name | string | The name of the object |
| partition | string | The BIG-IP partition where the object should be placed |
| subPath | string | The BIG-IP folder where the object should be placed |
| lsoDeviceReference | reference | Reference to the device |
| id | string | Id of the device. |
| name | string | Device name. Typically it is device’s hostname. |
| kind | string | Kind of the device. |
| machineId | string | Machine ID of the device. |
| link | string | URI link of the reference. |
| isLsoShared | boolean | Specifies if the location-specific object instance is shared across all devices. Use this only during POST. Warning: Do not flip this flag during PUT/PATCH operations. |
| deviceGroupReference | reference | Reference to the device group. |
| name | string | Name of the resource |
| kind | string | The kind of the resource. |
| link | string | URI link of the reference. |
| id | string | An ID of an application |
| kind | string | The kind of application. |
| selfLink | string | The selfLink of an application. |
Error Response¶
HTTP/1.1 400 Bad Request
This response status is related to error conditions. A detailed error message displays in the response.
HTTP/1.1 401 Unauthorized
This response happens when access is denied due to invalid credentials(no Permission).
Permissions¶
| Role | Allow |
|---|---|
| Application_Editor | No |
| Service_Catalog_Viewer | No |
| Service_Catalog_Editor | No |
| Trust_Discovery_Import | No |
| Access_View | No |
| Access_Edit | Yes |
| Access_Manager | Yes |
| Application_Manager | No |
| Application_Viewer | No |
| Trust_Discovery_Import | No |
| Access_Deploy | No |
| Access_Policy_Editor | No |
PATCH /mgmt/cm/access/working-config/apm/aaa/tacacsplus/<id>¶
Request Parameters¶
| Name | Type | Required | Description |
|---|---|---|---|
| address | string | False | Specify the IP addresses of the TACACS+ server to which APM can connect for AAA services. |
| usePool | string | False | Specify the TACACS+ servers for APM to use to authenticate users. Use Pool to create a high availability configuration. Use Direct to specify one TACACS+ server for APM to authenticate users. |
| pool | string | False | For the pool name, first create the pool and pool members. The LTM pool must be configured with the TACACS+ server ip’s as its pool members. Then, associate in this property. |
| authService | string | False | Specify the authentication service. |
| authType | string | False | Specify the authentication type. |
| encrypt | string | False | To encrypt and decrypt packets that are sent to or received from the server, enter ‘Enabled’. |
| port | number | False | Specify a service port number. The default Value is 49. |
| privLvl | string | False | Specify the privilege level for the request. |
| protocol | string | False | Specify the protocol associated with the value in the Service setting. |
| secret | string | False | To encrypt and decrypt packets that are sent to or received from the server, enter ‘Enabled’, and enter the secret key in the Secret. |
| service | string | False | Specify the type of service you want to provide. |
| isLsoShared | boolean | False | Specifies if the location-specific object instance is shared across all devices. Use this only during POST. Warning: Do not flip this flag during PUT/PATCH operations. |
Query Parameters¶
None
Response¶
HTTP/1.1 200 OK
| Name | Type | Description |
|---|---|---|
| address | string | Specify the IP addresses of the TACACS+ server to which APM can connect for AAA services. |
| usePool | string | Specify the TACACS+ servers for APM to use to authenticate users. Use Pool to create a high availability configuration. Use Direct to specify one TACACS+ server for APM to authenticate users. |
| pool | string | For the pool name, first create the pool and pool members. The LTM pool must be configured with the TACACS+ server ip’s as its pool members. Then, associate in this property. |
| authService | string | Specify the authentication service. |
| authType | string | Specify the authentication type. |
| encrypt | string | To encrypt and decrypt packets that are sent to or received from the server, enter ‘Enabled’. |
| port | number | Specify a service port number. The default Value is 49. |
| privLvl | string | Specify the privilege level for the request. |
| protocol | string | Specify the protocol associated with the value in the Service setting. |
| secret | string | To encrypt and decrypt packets that are sent to or received from the server, enter ‘Enabled’, and enter the secret key in the Secret. |
| service | string | Specify the type of service you want to provide. |
| name | string | The name of the object |
| partition | string | The BIG-IP partition where the object should be placed |
| subPath | string | The BIG-IP folder where the object should be placed |
| lsoDeviceReference | reference | Reference to the device |
| id | string | Id of the device. |
| name | string | Device name. Typically it is device’s hostname. |
| kind | string | Kind of the device. |
| machineId | string | Machine ID of the device. |
| link | string | URI link of the reference. |
| isLsoShared | boolean | Specifies if the location-specific object instance is shared across all devices. Use this only during POST. Warning: Do not flip this flag during PUT/PATCH operations. |
| deviceGroupReference | reference | Reference to the device group. |
| name | string | Name of the resource |
| kind | string | The kind of the resource. |
| link | string | URI link of the reference. |
| id | string | An ID of an application |
| kind | string | The kind of application. |
| selfLink | string | The selfLink of an application. |
Error Response¶
HTTP/1.1 400 Bad Request
This response status is related to error conditions. A detailed error message displays in the response.
HTTP/1.1 401 Unauthorized
This response happens when access is denied due to invalid credentials(no Permission).
Permissions¶
| Role | Allow |
|---|---|
| Application_Editor | No |
| Service_Catalog_Viewer | No |
| Service_Catalog_Editor | No |
| Trust_Discovery_Import | No |
| Access_View | No |
| Access_Edit | Yes |
| Access_Manager | Yes |
| Application_Manager | No |
| Application_Viewer | No |
| Trust_Discovery_Import | No |
| Access_Deploy | No |
| Access_Policy_Editor | No |
DELETE /mgmt/cm/access/working-config/apm/aaa/tacacsplus/<id>¶
Request Parameters¶
None
Query Parameters¶
None
Response¶
HTTP/1.1 200 OK
| Name | Type | Description |
|---|---|---|
| address | string | Specify the IP addresses of the TACACS+ server to which APM can connect for AAA services. |
| usePool | string | Specify the TACACS+ servers for APM to use to authenticate users. Use Pool to create a high availability configuration. Use Direct to specify one TACACS+ server for APM to authenticate users. |
| pool | string | For the pool name, first create the pool and pool members. The LTM pool must be configured with the TACACS+ server ip’s as its pool members. Then, associate in this property. |
| authService | string | Specify the authentication service. |
| authType | string | Specify the authentication type. |
| encrypt | string | To encrypt and decrypt packets that are sent to or received from the server, enter ‘Enabled’. |
| port | number | Specify a service port number. The default Value is 49. |
| privLvl | string | Specify the privilege level for the request. |
| protocol | string | Specify the protocol associated with the value in the Service setting. |
| secret | string | To encrypt and decrypt packets that are sent to or received from the server, enter ‘Enabled’, and enter the secret key in the Secret. |
| service | string | Specify the type of service you want to provide. |
| name | string | The name of the object |
| partition | string | The BIG-IP partition where the object should be placed |
| subPath | string | The BIG-IP folder where the object should be placed |
| lsoDeviceReference | reference | Reference to the device |
| id | string | Id of the device. |
| name | string | Device name. Typically it is device’s hostname. |
| kind | string | Kind of the device. |
| machineId | string | Machine ID of the device. |
| link | string | URI link of the reference. |
| isLsoShared | boolean | Specifies if the location-specific object instance is shared across all devices. Use this only during POST. Warning: Do not flip this flag during PUT/PATCH operations. |
| deviceGroupReference | reference | Reference to the device group. |
| name | string | Name of the resource |
| kind | string | The kind of the resource. |
| link | string | URI link of the reference. |
| id | string | An ID of an application |
| kind | string | The kind of application. |
| selfLink | string | The selfLink of an application. |
Error Response¶
HTTP/1.1 400 Bad Request
This response status is related to error conditions. A detailed error message displays in the response.
HTTP/1.1 401 Unauthorized
This response happens when access is denied due to invalid credentials(no Permission).
Permissions¶
| Role | Allow |
|---|---|
| Application_Editor | No |
| Service_Catalog_Viewer | No |
| Service_Catalog_Editor | No |
| Trust_Discovery_Import | No |
| Access_View | No |
| Access_Edit | Yes |
| Access_Manager | Yes |
| Application_Manager | No |
| Application_Viewer | No |
| Trust_Discovery_Import | No |
| Access_Deploy | No |
| Access_Policy_Editor | No |
Examples¶
Get AAA TACACS+ Server¶
GET /mgmt/cm/access/working-config/apm/aaa/tacacsplus/<id>
Response¶
HTTP/1.1 200 OK
{
"address": "1.1.1.1",
"usePool": "enabled",
"pool": "true",
"authService": "ppp",
"authType": "pap",
"encrypt": "enabled",
"port": 49,
"privLvl": "min",
"protocol": "unknown",
"secret": "admin",
"service": "none",
"name": "foo",
"partition": "Common",
"subPath": "/folder",
"lsoDeviceReference": {
"id": "866cfd8a-4d03-48e9-ba94-bb21a4bc2346",
"name": "bigip.foo.com",
"kind": "shared:resolver:device-groups:restdeviceresolverdevicestate",
"machineId": "866cfd8a-4d03-48e9-ba94-bb21a4bc2346",
"link": "https://localhost/mgmt/shared/foo/bar/866cfd8a-4d03-48e9-ba94-bb21a4bc2346"
},
"isLsoShared": false,
"deviceGroupReference": {
"name": "resourceName",
"kind": "shared:resolver:device-groups:devicegroupstate",
"link": "https://localhost/mgmt/shared/foo/bar/866cfd8a-4d03-48e9-ba94-bb21a4bc2346"
},
"id": "8f1fcb69-1f3c-3c0d-812e-af4fdde0ac11",
"kind": "cm:access:working-config:apm:aaa:state",
"selfLink": "https://localhost/mgmt/cm/access/working-config/apm/f0938680-57d5-377f-8c73-da4c2ce561ed"
}
Create New AAA TACACS+ Server¶
POST /mgmt/cm/access/working-config/apm/aaa/tacacsplus
{
"address": "1.1.1.1",
"usePool": "enabled",
"pool": "true",
"authService": "ppp",
"authType": "pap",
"encrypt": "enabled",
"port": 49,
"privLvl": "min",
"protocol": "unknown",
"secret": "admin",
"service": "none",
"name": "foo",
"partition": "Common",
"subPath": "/folder",
"lsoDeviceReference": {
"id": "866cfd8a-4d03-48e9-ba94-bb21a4bc2346",
"link": "https://localhost/mgmt/shared/foo/bar/866cfd8a-4d03-48e9-ba94-bb21a4bc2346"
},
"isLsoShared": false,
"deviceGroupReference": {
"link": "https://localhost/mgmt/shared/foo/bar/866cfd8a-4d03-48e9-ba94-bb21a4bc2346"
},
}
Response¶
HTTP/1.1 200 OK
{
"address": "1.1.1.1",
"usePool": "enabled",
"pool": "true",
"authService": "ppp",
"authType": "pap",
"encrypt": "enabled",
"port": 49,
"privLvl": "min",
"protocol": "unknown",
"secret": "admin",
"service": "none",
"name": "foo",
"partition": "Common",
"subPath": "/folder",
"lsoDeviceReference": {
"id": "866cfd8a-4d03-48e9-ba94-bb21a4bc2346",
"name": "bigip.foo.com",
"kind": "shared:resolver:device-groups:restdeviceresolverdevicestate",
"machineId": "866cfd8a-4d03-48e9-ba94-bb21a4bc2346",
"link": "https://localhost/mgmt/shared/foo/bar/866cfd8a-4d03-48e9-ba94-bb21a4bc2346"
},
"isLsoShared": false,
"deviceGroupReference": {
"name": "resourceName",
"kind": "shared:resolver:device-groups:devicegroupstate",
"link": "https://localhost/mgmt/shared/foo/bar/866cfd8a-4d03-48e9-ba94-bb21a4bc2346"
},
"id": "8f1fcb69-1f3c-3c0d-812e-af4fdde0ac11",
"kind": "cm:access:working-config:apm:aaa:state",
"selfLink": "https://localhost/mgmt/cm/access/working-config/apm/f0938680-57d5-377f-8c73-da4c2ce561ed"
}
Edit AAA TACACS+ Server¶
PUT /mgmt/cm/access/working-config/apm/aaa/tacacsplus/<id>
{
"address": "1.1.1.1",
"usePool": "enabled",
"pool": "true",
"authService": "ppp",
"authType": "pap",
"encrypt": "enabled",
"port": 49,
"privLvl": "min",
"protocol": "unknown",
"secret": "admin",
"service": "none",
"name": "foo",
"partition": "Common",
"subPath": "/folder",
"lsoDeviceReference": {
"id": "866cfd8a-4d03-48e9-ba94-bb21a4bc2346",
"name": "bigip.foo.com",
"kind": "shared:resolver:device-groups:restdeviceresolverdevicestate",
"machineId": "866cfd8a-4d03-48e9-ba94-bb21a4bc2346",
"link": "https://localhost/mgmt/shared/foo/bar/866cfd8a-4d03-48e9-ba94-bb21a4bc2346"
},
"isLsoShared": false,
"deviceGroupReference": {
"name": "resourceName",
"kind": "shared:resolver:device-groups:devicegroupstate",
"link": "https://localhost/mgmt/shared/foo/bar/866cfd8a-4d03-48e9-ba94-bb21a4bc2346"
},
"id": "8f1fcb69-1f3c-3c0d-812e-af4fdde0ac11",
"kind": "cm:access:working-config:apm:aaa:state",
"selfLink": "https://localhost/mgmt/cm/access/working-config/apm/f0938680-57d5-377f-8c73-da4c2ce561ed"
}
Response¶
HTTP/1.1 200 OK
{
"address": "1.1.1.1",
"usePool": "enabled",
"pool": "true",
"authService": "ppp",
"authType": "pap",
"encrypt": "enabled",
"port": 49,
"privLvl": "min",
"protocol": "unknown",
"secret": "admin",
"service": "none",
"name": "foo",
"partition": "Common",
"subPath": "/folder",
"lsoDeviceReference": {
"id": "866cfd8a-4d03-48e9-ba94-bb21a4bc2346",
"name": "bigip.foo.com",
"kind": "shared:resolver:device-groups:restdeviceresolverdevicestate",
"machineId": "866cfd8a-4d03-48e9-ba94-bb21a4bc2346",
"link": "https://localhost/mgmt/shared/foo/bar/866cfd8a-4d03-48e9-ba94-bb21a4bc2346"
},
"isLsoShared": false,
"deviceGroupReference": {
"name": "resourceName",
"kind": "shared:resolver:device-groups:devicegroupstate",
"link": "https://localhost/mgmt/shared/foo/bar/866cfd8a-4d03-48e9-ba94-bb21a4bc2346"
},
"id": "8f1fcb69-1f3c-3c0d-812e-af4fdde0ac11",
"kind": "cm:access:working-config:apm:aaa:state",
"selfLink": "https://localhost/mgmt/cm/access/working-config/apm/f0938680-57d5-377f-8c73-da4c2ce561ed"
}
Edit AAA TACACS+ Server¶
PATCH /mgmt/cm/access/working-config/apm/aaa/tacacsplus/<id>
{
"address": "1.1.1.1",
"usePool": "enabled",
"pool": "true",
"authService": "ppp",
"authType": "pap",
"encrypt": "enabled",
"port": 49,
"privLvl": "min",
"protocol": "unknown",
"secret": "admin",
"service": "none",
"isLsoShared": false,
}
Response¶
HTTP/1.1 200 OK
{
"address": "1.1.1.1",
"usePool": "enabled",
"pool": "true",
"authService": "ppp",
"authType": "pap",
"encrypt": "enabled",
"port": 49,
"privLvl": "min",
"protocol": "unknown",
"secret": "admin",
"service": "none",
"name": "foo",
"partition": "Common",
"subPath": "/folder",
"lsoDeviceReference": {
"id": "866cfd8a-4d03-48e9-ba94-bb21a4bc2346",
"name": "bigip.foo.com",
"kind": "shared:resolver:device-groups:restdeviceresolverdevicestate",
"machineId": "866cfd8a-4d03-48e9-ba94-bb21a4bc2346",
"link": "https://localhost/mgmt/shared/foo/bar/866cfd8a-4d03-48e9-ba94-bb21a4bc2346"
},
"isLsoShared": false,
"deviceGroupReference": {
"name": "resourceName",
"kind": "shared:resolver:device-groups:devicegroupstate",
"link": "https://localhost/mgmt/shared/foo/bar/866cfd8a-4d03-48e9-ba94-bb21a4bc2346"
},
"id": "8f1fcb69-1f3c-3c0d-812e-af4fdde0ac11",
"kind": "cm:access:working-config:apm:aaa:state",
"selfLink": "https://localhost/mgmt/cm/access/working-config/apm/f0938680-57d5-377f-8c73-da4c2ce561ed"
}
Delete AAA TACACS+ Server¶
DELETE /mgmt/cm/access/working-config/apm/aaa/tacacsplus/<id>
Response¶
HTTP/1.1 200 OK
{
"address": "1.1.1.1",
"usePool": "enabled",
"pool": "true",
"authService": "ppp",
"authType": "pap",
"encrypt": "enabled",
"port": 49,
"privLvl": "min",
"protocol": "unknown",
"secret": "admin",
"service": "none",
"name": "foo",
"partition": "Common",
"subPath": "/folder",
"lsoDeviceReference": {
"id": "866cfd8a-4d03-48e9-ba94-bb21a4bc2346",
"name": "bigip.foo.com",
"kind": "shared:resolver:device-groups:restdeviceresolverdevicestate",
"machineId": "866cfd8a-4d03-48e9-ba94-bb21a4bc2346",
"link": "https://localhost/mgmt/shared/foo/bar/866cfd8a-4d03-48e9-ba94-bb21a4bc2346"
},
"isLsoShared": false,
"deviceGroupReference": {
"name": "resourceName",
"kind": "shared:resolver:device-groups:devicegroupstate",
"link": "https://localhost/mgmt/shared/foo/bar/866cfd8a-4d03-48e9-ba94-bb21a4bc2346"
},
"id": "8f1fcb69-1f3c-3c0d-812e-af4fdde0ac11",
"kind": "cm:access:working-config:apm:aaa:state",
"selfLink": "https://localhost/mgmt/cm/access/working-config/apm/f0938680-57d5-377f-8c73-da4c2ce561ed"
}