cisco.dnac.access_groups module -- Resource module for Access Groups

Note

This module is part of the cisco.dnac collection (version 6.46.0).

To install it, use: ansible-galaxy collection install cisco.dnac. You need further requirements to be able to use this module, see Requirements for details.

To use it in a playbook, specify: cisco.dnac.access_groups.

New in cisco.dnac 6.46.0

Synopsis

• Manage operations create, update and delete of the resource Access Groups.

• Add an access group into the system.

• Delete an access group from the system.

• Update an access group in the system.

Note

This module has a corresponding action plugin.

Requirements

The below requirements are needed on the host that executes this module.

• dnacentersdk >= 2.11.0

• python >= 3.12

Parameters

Parameter	Comments
description string	Description of the access group.
dnac_debug boolean	Flag for Cisco DNA Center SDK to enable debugging. Choices: :ansible-option-choices-entry-default:`false` ← (default) :ansible-option-choices-entry:`true`
dnac_host string / required	The Cisco DNA Center hostname.
dnac_password string	The Cisco DNA Center password to authenticate.
dnac_port integer	The Cisco DNA Center port. Default: :ansible-option-default:`443`
dnac_username aliases: user string	The Cisco DNA Center username to authenticate. Default: :ansible-option-default:`"admin"`
dnac_verify boolean	Flag to enable or disable SSL certificate verification. Choices: :ansible-option-choices-entry:`false` :ansible-option-choices-entry-default:`true` ← (default)
dnac_version string	Informs the SDK which version of Cisco DNA Center to use. Default: :ansible-option-default:`"3.1.6.0"`
id string	Id path parameter. Id of the access group to be deleted.
name string	Name of the access group.
resourceGroups list / elements=dictionary	Access Groups's resourceGroups.
name string	The name of the resource. This should always be the site hierarchy id you would like to associate to this access group to.
srcResourceId string	Id of the resource. This should be the site hierarchy id of the site you wish to scope this access group to. Please refer to the description for more details.
type string	The type of resource. Currently, the only supported value is "site".
role list / elements=string	List of role names.
validate_response_schema boolean	Flag for Cisco DNA Center SDK to enable the validation of request bodies against a JSON schema. Choices: :ansible-option-choices-entry:`false` :ansible-option-choices-entry-default:`true` ← (default)

Notes

Note

• SDK Method used are userand_roles.UserandRoles.add_access_group, userand_roles.UserandRoles.delete_access_group, userand_roles.UserandRoles.update_access_group,

• Paths used are post /dna/system/api/v1/accessGroups, delete /dna/system/api/v1/accessGroups/{id}, put /dna/system/api/v1/accessGroups/{id},

• Does not support check_mode

• The plugin runs on the control node and does not use any ansible connection plugins, but instead the embedded connection manager from Cisco DNAC SDK

• The parameters starting with dnac_ are used by the Cisco DNAC Python SDK to establish the connection

See Also

See also

Cisco DNA Center documentation for User and Roles AddAccessGroup

Complete reference of the AddAccessGroup API.

Cisco DNA Center documentation for User and Roles DeleteAccessGroup

Complete reference of the DeleteAccessGroup API.

Cisco DNA Center documentation for User and Roles UpdateAccessGroup

Complete reference of the UpdateAccessGroup API.

Examples

---
- name: Create
  cisco.dnac.access_groups:
    dnac_host: "{{dnac_host}}"
    dnac_username: "{{dnac_username}}"
    dnac_password: "{{dnac_password}}"
    dnac_verify: "{{dnac_verify}}"
    dnac_port: "{{dnac_port}}"
    dnac_version: "{{dnac_version}}"
    dnac_debug: "{{dnac_debug}}"
    state: present
    description: string
    name: string
    resourceGroups:
      - name: string
        srcResourceId: string
        type: string
    role:
      - string
- name: Delete by id
  cisco.dnac.access_groups:
    dnac_host: "{{dnac_host}}"
    dnac_username: "{{dnac_username}}"
    dnac_password: "{{dnac_password}}"
    dnac_verify: "{{dnac_verify}}"
    dnac_port: "{{dnac_port}}"
    dnac_version: "{{dnac_version}}"
    dnac_debug: "{{dnac_debug}}"
    state: absent
    id: string
- name: Update by id
  cisco.dnac.access_groups:
    dnac_host: "{{dnac_host}}"
    dnac_username: "{{dnac_username}}"
    dnac_password: "{{dnac_password}}"
    dnac_verify: "{{dnac_verify}}"
    dnac_port: "{{dnac_port}}"
    dnac_version: "{{dnac_version}}"
    dnac_debug: "{{dnac_debug}}"
    state: present
    description: string
    id: string
    resourceGroups:
      - name: string
        srcResourceId: string
        type: string
    role:
      - string

Return Values

Common return values are documented here, the following are the fields unique to this module:

Key

Description

dnac_response dictionary

A dictionary or list with the response returned by the Cisco DNAC Python SDK Returned: always Sample: :ansible-rv-sample-value:`{"accessGroupInfo": {"description": "string", "name": "string", "resourceGroups": [{"name": "string", "srcResourceId": "string", "type": "string"}], "role": ["string"]}, "id": "string", "meta": {"created": "string", "createdBy": "string", "lastModified": "string", "lastModifiedBy": "string"}}`

Authors

• Rafael Campos (@racampos)

Collection links

Issue Tracker Repository (Sources)