SSOPolicy

SSOPolicy
SSOPolicy
JSON Example
{
    "_last_modified": "string",
    "authentication_policy": {
        "authn_rules": [
            {
                "action": {
                    "type": "string"
                },
                "enable": false,
                "index": 0,
                "match": {
                    "client_ip": {
                        "addrs": [
                            {
                                "addr": "string",
                                "type": "string"
                            }
                        ],
                        "group_refs": [
                            "string"
                        ],
                        "match_criteria": "string",
                        "prefixes": [
                            {
                                "ip_addr": {
                                    "addr": "string",
                                    "type": "string"
                                },
                                "mask": 0
                            }
                        ],
                        "ranges": [
                            {
                                "begin": {
                                    "addr": "string",
                                    "type": "string"
                                },
                                "end": {
                                    "addr": "string",
                                    "type": "string"
                                }
                            }
                        ]
                    },
                    "host_hdr": {
                        "match_case": "string",
                        "match_criteria": "string",
                        "value": [
                            "string"
                        ]
                    },
                    "path": {
                        "match_case": "string",
                        "match_criteria": "string",
                        "match_decoded_string": false,
                        "match_str": [
                            "string"
                        ],
                        "string_group_refs": [
                            "string"
                        ]
                    }
                },
                "name": "string"
            }
        ],
        "default_auth_profile_ref": "string"
    },
    "authorization_policy": {
        "authz_rules": [
            {
                "action": {
                    "status_code": "string",
                    "type": "string"
                },
                "enable": false,
                "index": 0,
                "match": {
                    "access_token": {
                        "matches": [
                            {
                                "bool_match": false,
                                "int_match": 0,
                                "is_mandatory": false,
                                "name": "string",
                                "string_match": {
                                    "match_criteria": "string",
                                    "match_str": [
                                        "string"
                                    ],
                                    "string_group_refs": [
                                        "string"
                                    ]
                                },
                                "type": "string",
                                "validate": false
                            }
                        ],
                        "token_name": "string"
                    },
                    "attr_matches": [
                        {
                            "attribute_name": "string",
                            "attribute_value_list": {
                                "match_criteria": "string",
                                "match_str": [
                                    "string"
                                ],
                                "string_group_refs": [
                                    "string"
                                ]
                            }
                        }
                    ],
                    "host_hdr": {
                        "match_case": "string",
                        "match_criteria": "string",
                        "value": [
                            "string"
                        ]
                    },
                    "method": {
                        "match_criteria": "string",
                        "methods": [
                            "string"
                        ]
                    },
                    "path": {
                        "match_case": "string",
                        "match_criteria": "string",
                        "match_decoded_string": false,
                        "match_str": [
                            "string"
                        ],
                        "string_group_refs": [
                            "string"
                        ]
                    }
                },
                "name": "string"
            }
        ]
    },
    "configpb_attributes": {
        "version": 0
    },
    "markers": [
        {
            "key": "string",
            "values": [
                "string"
            ]
        }
    ],
    "name": "string",
    "tenant_ref": "string",
    "type": "string",
    "url": "string",
    "uuid": "string"
}
string
_last_modified
Optional

UNIX time since epoch in microseconds. Units(MICROSECONDS).

authentication_policy
Optional

authentication_policy

authorization_policy
Optional

authorization_policy

configpb_attributes
Optional

configpb_attributes

markers
Optional

List of labels to be used for granular RBAC. Field introduced in 20.1.5. Allowed in Enterprise edition with any value, Essentials edition with any value, Basic edition with any value, Enterprise with Cloud Services edition.

string
name
Required

Name of the SSO Policy. Field introduced in 18.2.3. Allowed in Enterprise edition with any value, Essentials, Basic, Enterprise with Cloud Services edition.

string
tenant_ref
Optional

UUID of the Tenant. It is a reference to an object of type Tenant. Field introduced in 18.2.3. Allowed in Enterprise edition with any value, Essentials, Basic, Enterprise with Cloud Services edition.

string
type
Required
Constraints: default: SSO_TYPE_SAML

SSO Policy Type. Enum options - SSO_TYPE_SAML, SSO_TYPE_PINGACCESS, SSO_TYPE_JWT, SSO_TYPE_LDAP, SSO_TYPE_OAUTH. Field introduced in 18.2.5. Allowed in Enterprise edition with any value, Essentials edition with any value, Basic edition(Allowed values- SSO_TYPE_SAML, SSO_TYPE_JWT, SSO_TYPE_LDAP, SSO_TYPE_OAUTH), Enterprise with Cloud Services edition.

string
url
Optional

url

string
uuid
Optional

UUID of the SSO Policy. Field introduced in 18.2.3. Allowed in Enterprise edition with any value, Essentials, Basic, Enterprise with Cloud Services edition.