zscaler.ziacloud.zia_alerts module – Manages ZIA alert subscriptions

Note

This module is part of the zscaler.ziacloud collection (version 2.2.3).

It is not included in ansible-core. To check whether it is installed, run ansible-galaxy collection list.

To install it, use: ansible-galaxy collection install zscaler.ziacloud. You need further requirements to be able to use this module, see Requirements for details.

To use it in a playbook, specify: zscaler.ziacloud.zia_alerts.

New in zscaler.ziacloud 1.0.0

Synopsis

  • Adds, updates, or removes ZIA alert subscriptions.

Requirements

The below requirements are needed on the host that executes this module.

Parameters

Parameter

Comments

api_key

string

A string that contains the obfuscated API key.

client_id

string

The client ID for OAuth2 authentication.

client_secret

string

The client secret for OAuth2 authentication.

cloud

string

The Zscaler cloud name provisioned for your organization.

Choices:

  • "beta"

  • "production"

  • "zscaler"

  • "zscalerbeta"

  • "zscalergov"

  • "zscalerone"

  • "zscalerten"

  • "zscalerthree"

  • "zscalertwo"

  • "zscloud"

  • "zspreview"

comply_severities

list / elements=string

Lists the severity levels of the Comply Alert class information that the recipient receives.

Choices:

  • "CRITICAL"

  • "MAJOR"

  • "MINOR"

  • "INFO"

  • "DEBUG"

description

string

Additional comments or information about the alert subscription.

email

string / required

The email address of the alert recipient.

id

integer

The unique identifier for the alert subscription.

System-generated identifier. Used to reference an existing subscription for update or delete.

manage_severities

list / elements=string

Lists the severity levels of the Manage Alert class information that the recipient receives.

Choices:

  • "CRITICAL"

  • "MAJOR"

  • "MINOR"

  • "INFO"

  • "DEBUG"

password

string

A string that contains the password for the API admin.

private_key

string

The private key for JWT-based OAuth2 authentication.

provider

dictionary

A dict containing authentication credentials.

api_key

string

Obfuscated API key.

client_id

string

OAuth2 client ID.

client_secret

string

OAuth2 client secret.

cloud

string

Zscaler cloud name.

Choices:

  • "beta"

  • "production"

  • "zscaler"

  • "zscalerbeta"

  • "zscalergov"

  • "zscalerone"

  • "zscalerten"

  • "zscalerthree"

  • "zscalertwo"

  • "zscloud"

  • "zspreview"

password

string

Password for the API admin.

private_key

string

Private key for OAuth2 JWT.

sandbox_cloud

string

Sandbox Cloud environment.

sandbox_token

string

Sandbox API Key.

use_legacy_client

boolean

Whether to use the legacy Zscaler API client.

Choices:

  • false ← (default)

  • true

username

string

Email ID of the API admin.

vanity_domain

string

Vanity domain for OAuth2.

pt0_severities

list / elements=string

Lists the severity levels of the Patient 0 Alert class information that the recipient receives.

Choices:

  • "CRITICAL"

  • "MAJOR"

  • "MINOR"

  • "INFO"

  • "DEBUG"

sandbox_cloud

string

The Sandbox cloud environment for API access.

sandbox_token

string

A string that contains the Sandbox API Key.

secure_severities

list / elements=string

Lists the severity levels of the Secure Alert class information that the recipient receives.

Choices:

  • "CRITICAL"

  • "MAJOR"

  • "MINOR"

  • "INFO"

  • "DEBUG"

state

string

Specifies the desired state of the resource.

Choices:

  • "present" ← (default)

  • "absent"

system_severities

list / elements=string

Lists the severity levels of the System Alerts class information that the recipient receives.

Choices:

  • "CRITICAL"

  • "MAJOR"

  • "MINOR"

  • "INFO"

  • "DEBUG"

use_legacy_client

boolean

Whether to use the legacy Zscaler API client.

Choices:

  • false ← (default)

  • true

username

string

A string that contains the email ID of the API admin.

vanity_domain

string

The vanity domain provisioned by Zscaler for OAuth2 flows.

Notes

Note

  • Check mode is supported.

Examples

- name: Create an alert subscription
  zscaler.ziacloud.zia_alerts:
    provider: '{{ provider }}'
    email: "alerts@example.com"
    description: "Production alert subscription"
    pt0_severities:
      - CRITICAL
      - MAJOR
    secure_severities:
      - CRITICAL
      - MAJOR
      - MINOR
    manage_severities:
      - CRITICAL
    comply_severities:
      - CRITICAL
    system_severities:
      - CRITICAL
      - MAJOR

- name: Update an alert subscription by ID
  zscaler.ziacloud.zia_alerts:
    provider: '{{ provider }}'
    id: 123456
    email: "alerts@example.com"
    description: "Updated description"

- name: Delete an alert subscription
  zscaler.ziacloud.zia_alerts:
    provider: '{{ provider }}'
    id: 123456
    state: absent

Return Values

Common return values are documented here, the following are the fields unique to this module:

Key

Description

data

dictionary

The alert subscription resource record.

Returned: on success

comply_severities

list / elements=string

Severity levels for Comply Alert class.

Returned: success

description

string

Additional comments or information about the alert subscription.

Returned: success

email

string

The email address of the alert recipient.

Returned: success

id

integer

The unique identifier for the alert subscription.

Returned: success

manage_severities

list / elements=string

Severity levels for Manage Alert class.

Returned: success

pt0_severities

list / elements=string

Severity levels for Patient 0 Alert class.

Returned: success

secure_severities

list / elements=string

Severity levels for Secure Alert class.

Returned: success

system_severities

list / elements=string

Severity levels for System Alerts class.

Returned: success

Authors

  • William Guilherme (@willguibr)