def acp(self, name="", id=""):
"""
Associate an AccessPolicies object with this AccessRule object.
:param name: (str) Name of ACP.
:param id: (str) ID of ACP.
:return: None
"""
# either name or id of the ACP should be given
logging.debug("In acp() for AccessRules class.")
if id != "":
self.acp_id = id
self.URL = f"{self.fmc.configuration_url}{self.PREFIX_URL}/{id}/accessrules"
elif name != "":
acp1 = AccessPolicies(fmc=self.fmc)
acp1.get(name=name)
if "id" in acp1.__dict__:
self.acp_id = acp1.id
self.URL = f"{self.fmc.configuration_url}{self.PREFIX_URL}/{acp1.id}/accessrules"
else:
logging.warning(
f"Access Control Policy {name} not found. Cannot set up accessPolicy for AccessRules."
)
else:
logging.error("No accessPolicy name or ID was provided.")
def accesspolicy(self, name, devices):
logging.debug("In accesspolicy() for PolicyAssignments class.")
targets = []
pol1 = AccessPolicies(fmc=self.fmc)
pol1.get(name=name)
if "id" in pol1.__dict__:
self.policy = {"type": pol1.type, "name": pol1.name, "id": pol1.id}
else:
logging.warning(
f"Access Control Policy {name} not found. Cannot set up PolicyAssignment."
)
for device in devices:
if device["type"] == "device":
dev1 = DeviceRecords(fmc=self.fmc)
dev1.get(name=device["name"])
elif device["type"] == "deviceHAPair":
dev1 = FTDDeviceHAPairs(fmc=self.fmc)
dev1.get(name=device["name"])
if "id" in dev1.__dict__:
logging.info(
f'Adding "{dev1.name}" to targets for this Access Control Policy PolicyAssignment.'
)
targets.append({
"type": dev1.type,
"id": dev1.id,
"name": dev1.name
})
else:
logging.warning(
f"Device/DeviceHA {device['name']} not found. Cannot add to PolicyAssignment."
)
self.targets = targets
def acp(self, name=""):
logging.debug("In acp() for DeviceRecords class.")
acp = AccessPolicies(fmc=self.fmc)
acp.get(name=name)
if "id" in acp.__dict__:
self.accessPolicy = {"id": acp.id, "type": acp.type}
else:
logging.warning(
f"Access Control Policy {name} not found. Cannot set up accessPolicy for DeviceRecords."
)
def acp(self, name=""):
"""
Associate AccessPolicy with this device.
:param name: (str) Name of ACP.
:return: None
"""
logging.debug("In acp() for DeviceRecords class.")
acp = AccessPolicies(fmc=self.fmc)
acp.get(name=name)
if "id" in acp.__dict__:
self.accessPolicy = {"id": acp.id, "type": acp.type}
else:
logging.warning(
f"Access Control Policy {name} not found. Cannot set up accessPolicy for DeviceRecords."
)
def acp(self, name="", id=""):
# either name or id of the ACP should be given
logging.debug("In acp() for AccessRules class.")
if id != "":
self.URL = f"{self.fmc.configuration_url}{self.PREFIX_URL}/{id}/accessrules"
elif name != "":
acp1 = AccessPolicies(fmc=self.fmc)
acp1.get(name=name)
if "id" in acp1.__dict__:
self.URL = f"{self.fmc.configuration_url}{self.PREFIX_URL}/{acp1.id}/accessrules"
else:
logging.warning(
f"Access Control Policy {name} not found. Cannot set up accessPolicy for AccessRules."
)
else:
logging.error("No accessPolicy name or ID was provided.")