def user_role_add(handle, user_name, name, descr=None, **kwargs):
"""
adds role to an user
Args:
handle (UcsHandle)
user_name (string): username
name (string): rolename
descr (string): descr
**kwargs: Any additional key-value pair of managed object(MO)'s
property and value, which are not part of regular args.
This should be used for future version compatibility.
Returns:
AaaUserRole: managed object
Raises:
UcsOperationError: if AaaUser is not present
Example:
user_role_add(handle, user_name="test", name="admin")
"""
from ucsmsdk.mometa.aaa.AaaUserRole import AaaUserRole
user = user_get(handle, user_name, "user_role_add")
mo = AaaUserRole(parent_mo_or_dn=user, name=name, descr=descr)
mo.set_prop_multiple(**kwargs)
handle.add_mo(mo, modify_present=True)
handle.commit()
return mo
def _user_role_add(handle, user_mo, name, descr=None, **kwargs):
"""
adds single role to an user
"""
from ucsmsdk.mometa.aaa.AaaUserRole import AaaUserRole
mo = AaaUserRole(parent_mo_or_dn=user_mo, name=name, descr=descr)
mo.set_prop_multiple(**kwargs)
handle.add_mo(mo, modify_present=True)
return mo
def user_add_role(handle, user_name, name, descr=""):
"""
Adds role to user
Args:
handle (UcsHandle)
user_name (string): username
name (string): rolename
descr (string): descr
Returns:
None
Example:
user_add_role(handle, user_name="test", name="admin")
"""
from ucsmsdk.mometa.aaa.AaaUserRole import AaaUserRole
dn = "sys/user-ext/user-" + user_name
obj = handle.query_dn(dn)
if obj is None:
raise ValueError("User does not exist.")
mo = AaaUserRole(parent_mo_or_dn=obj, name=name, descr=descr)
handle.add_mo(mo)
handle.commit()
def user_add_role(handle, user_name, name, descr=""):
"""
Adds role to an user
Args:
handle (UcsHandle)
user_name (string): username
name (string): rolename
descr (string): descr
Returns:
AaaUserRole: Managed object
Raises:
ValueError: If AaaUser is not present
Example:
user_add_role(handle, user_name="test", name="admin")
"""
from ucsmsdk.mometa.aaa.AaaUserRole import AaaUserRole
dn = "sys/user-ext/user-" + user_name
obj = handle.query_dn(dn)
if not obj:
raise ValueError("User does not exist.")
mo = AaaUserRole(parent_mo_or_dn=obj, name=name, descr=descr)
handle.add_mo(mo, True)
handle.commit()
return mo
def ldap_group_map_add_role(handle, ldap_group_map_name, name, descr=""):
"""
add role to ldap group map
Args:
handle (UcsHandle)
ldap_group_map_name (string): name of ldap group
name (string): role name
descr (string): descr
Returns:
AaaUserRole : Managed Object
Example:
ldap_group_map_add_role(handle,
ldap_group_map_name="test_ldap_group_map",
name="test_role")
"""
from ucsmsdk.mometa.aaa.AaaUserRole import AaaUserRole
dn = "sys/ldap-ext/ldapgroup-" + ldap_group_map_name
obj = handle.query_dn(dn)
if not obj:
raise ValueError("Ldap Group map '%s' does not exist" % dn)
mo = AaaUserRole(parent_mo_or_dn=obj, name=name, descr=descr)
handle.add_mo(mo, True)
handle.commit()
return mo
def ldap_group_map_add_role(handle, ldap_group_map_name, name, descr=""):
from ucsmsdk.mometa.aaa.AaaUserRole import AaaUserRole
dn = "sys/ldap-ext/ldapgroup-" + ldap_group_map_name
obj = handle.query_dn(dn)
if obj is None:
raise ValueError("Ldap Group map does not exist")
mo = AaaUserRole(parent_mo_or_dn=obj, name=name, descr=descr)
handle.add_mo(mo, True)
handle.commit()
def ldap_group_role_add(handle, ldap_group_name, name, descr=None, **kwargs):
"""
add role to ldap group map
Args:
handle (UcsHandle)
ldap_group_name (string): name of ldap group
name (string): role name
descr (string): description
**kwargs: Any additional key-value pair of managed object(MO)'s
property and value, which are not part of regular args.
This should be used for future version compatibility.
Returns:
AaaUserRole : managed object
Raises:
UcsOperationError: if AaaLdapGroup or AaaRole is not present
Example:
ldap_group_role_add(
handle, ldap_group_name="test_ldap_grp_map", name="storage")
"""
from ucsmsdk.mometa.aaa.AaaUserRole import AaaUserRole
from ..admin.role import role_get
role = role_get(handle, name=name)
ldap_group = ldap_group_get(handle,
name=ldap_group_name,
caller="ldap_group_role_add")
mo = AaaUserRole(parent_mo_or_dn=ldap_group, name=name, descr=descr)
mo.set_prop_multiple(**kwargs)
handle.add_mo(mo, modify_present=True)
handle.commit()
return mo
def add_ucs_user(inputString):
from ucsmsdk.mometa.aaa.AaaUser import AaaUser
from ucsmsdk.mometa.aaa.AaaSshAuth import AaaSshAuth
from ucsmsdk.mometa.aaa.AaaUserRole import AaaUserRole
handle = ucs_login()
#First, Last, Email, Username, Role
print(inputString)
inputs = inputString.split(',')
__first = inputs[0]
__last = inputs[1]
__email = inputs[2]
__user = inputs[3]
__role = inputs[4]
print(inputs)
mo = AaaUser(parent_mo_or_dn="sys/user-ext",
email=__email,
first_name=__first,
last_name=__last,
name=__user,
pwd="create123")
mo_1 = AaaSshAuth(parent_mo_or_dn=mo, data="", str_type="none")
mo_2 = AaaUserRole(parent_mo_or_dn=mo, descr="", name=__role)
handle.add_mo(mo)
handle.commit()
response = "Current Users:<br/>"
users = handle.query_classid("AaaUser")
for user in users:
response = response + user.name + " "
response = "<br/>" + response + "<br/>" + "Your password for user " + __user + " is create123. Change upon first login."
ucs_logout(handle)
print(response)
return response
def user_create(handle, name, first_name, last_name, descr, clear_pwd_history,
phone, email, pwd, expires, pwd_life_time, expiration,
enc_pwd="", enc_pwd_set="no", account_status="active",
role="read-only", role_descr=""):
"""
Creates user and assign role to it.
Args:
handle (UcsHandle)
name (string): name
first_name (string): first_name
last_name (string): last_name
descr (string): descr
clear_pwd_history (string): clear_pwd_history
phone (string): phone
email (string): email
pwd (string): pwd
expires (string): expires
pwd_life_time (string): pwd_life_time
expiration (string): expiration
enc_pwd (string): enc_pwd
enc_pwd_set (string): enc_pwd_set
account_status (string): account_status
role (string): role
role_descr (string): role_descr
Returns:
AaaUser Object
Example:
user_create(handle, name="test", first_name="firstname",
last_name="lastname", descr="", clear_pwd_history="no",
phone="+91-1234567890", email="*****@*****.**",
pwd="p@ssw0rd", expires="yes",
pwd_life_time="no-password-expire",
expiration="2016-01-13T00:00:00", enc_pwd="",
enc_pwd_set="no", account_status="active")
"""
from ucsmsdk.mometa.aaa.AaaUser import AaaUser
from ucsmsdk.mometa.aaa.AaaUserRole import AaaUserRole
user = AaaUser(parent_mo_or_dn="sys/user-ext",
name=name,
first_name=first_name,
last_name=last_name,
descr=descr,
clear_pwd_history=clear_pwd_history,
phone=phone,
email=email,
pwd=pwd,
expires=expires,
pwd_life_time=pwd_life_time,
expiration=expiration,
enc_pwd=enc_pwd,
enc_pwd_set=enc_pwd_set,
account_status=account_status)
role = AaaUserRole(parent_mo_or_dn=user, name=role, descr=role_descr)
handle.add_mo(user)
handle.commit()
return user