Documentation
¶
Overview ¶
Package certificate is the client.Device.Certificate namespace.
For Panorama, there are two possibilities: managing this object on Panorama itself or inside of a Template.
To manage objects on Panorama, leave "tmpl" and "vsys" params empty.
To manage objects in a template, specify the template name and the vsys (if unspecified, defaults to "shared").
Configuring things such as "Forward Trust Certificate", "Forward Untrust Certificate", and "Trusted Root CA" is done from the Device.SslDecrypt namespace.
Note: PAN-OS 7.1+
Normalized object: Entry
Index ¶
- Constants
- type Entry
- type Firewall
- func (c *Firewall) AllFromPanosConfig(vsys string) ([]Entry, error)
- func (c *Firewall) Delete(vsys string, e ...interface{}) error
- func (c *Firewall) Edit(vsys string, e Entry) error
- func (c *Firewall) Export(format, vsys, name, passphrase string, includeKey bool, timeout time.Duration) (string, []byte, error)
- func (c *Firewall) FromPanosConfig(vsys, name string) (Entry, error)
- func (c *Firewall) Get(vsys, name string) (Entry, error)
- func (c *Firewall) GetAll(vsys string) ([]Entry, error)
- func (c *Firewall) GetList(vsys string) ([]string, error)
- func (c *Firewall) ImportPem(vsys string, timeout time.Duration, cert Pem) error
- func (c *Firewall) ImportPkcs12(vsys string, timeout time.Duration, cert Pkcs12) error
- func (c *Firewall) Set(vsys string, e ...Entry) error
- func (c *Firewall) Show(vsys, name string) (Entry, error)
- func (c *Firewall) ShowAll(vsys string) ([]Entry, error)
- func (c *Firewall) ShowList(vsys string) ([]string, error)
- type Panorama
- func (c *Panorama) AllFromPanosConfig(shared bool, tmpl, vsys string) ([]Entry, error)
- func (c *Panorama) Delete(shared bool, tmpl, vsys string, e ...interface{}) error
- func (c *Panorama) Edit(shared bool, tmpl, vsys string, e Entry) error
- func (c *Panorama) Export(format, tmpl, vsys, name, passphrase string, includeKey bool, ...) (string, []byte, error)
- func (c *Panorama) FromPanosConfig(shared bool, tmpl, vsys, name string) (Entry, error)
- func (c *Panorama) Get(shared bool, tmpl, vsys, name string) (Entry, error)
- func (c *Panorama) GetAll(shared bool, tmpl, vsys string) ([]Entry, error)
- func (c *Panorama) GetList(shared bool, tmpl, vsys string) ([]string, error)
- func (c *Panorama) ImportPem(tmpl, vsys string, timeout time.Duration, cert Pem) error
- func (c *Panorama) ImportPkcs12(tmpl, vsys string, timeout time.Duration, cert Pkcs12) error
- func (c *Panorama) Set(shared bool, tmpl, vsys string, e ...Entry) error
- func (c *Panorama) Show(shared bool, tmpl, vsys, name string) (Entry, error)
- func (c *Panorama) ShowAll(shared bool, tmpl, vsys string) ([]Entry, error)
- func (c *Panorama) ShowList(shared bool, tmpl, vsys string) ([]string, error)
- type Pem
- type Pkcs12
Constants ¶
const ( StatusValid = "valid" StatusRevoked = "revoked" )
Valid values for Entry.Status.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type Entry ¶
type Entry struct {
Name string
CommonName string
Algorithm string
Ca bool
NotValidAfter string
NotValidBefore string
ExpiryEpoch string
Subject string
SubjectHash string
Issuer string
IssuerHash string
Csr string
PublicKey string
PrivateKey string
PrivateKeyOnHsm bool
Status string
RevokeDateEpoch string
}
Entry is a normalized, version independent representation of a certificate.
PAN-OS 7.1+.
type Firewall ¶
type Firewall struct {
// contains filtered or unexported fields
}
Firewall is the client.Device.Certificate namespace.
func FirewallNamespace ¶
func FirewallNamespace(client util.XapiClient) *Firewall
FirewallNamespace returns an initialized namespace.
func (*Firewall) AllFromPanosConfig ¶
AllFromPanosConfig retrieves all objects stored in the retrieved config.
func (*Firewall) Delete ¶
Delete performs DELETE to remove the specified objects.
Objects can be either a string or an Entry object.
func (*Firewall) Export ¶
func (c *Firewall) Export(format, vsys, name, passphrase string, includeKey bool, timeout time.Duration) (string, []byte, error)
Export exports a certificate.
The format param should be either "pem" or "pkcs12".
The public key is always exported.
Attempting to export a PKCS12 cert as a PEM cert will result in an error.
Return values are the filename, file contents, and an error.
func (*Firewall) FromPanosConfig ¶
FromPanosConfig retrieves the object stored in the retrieved config.
func (*Firewall) ImportPkcs12 ¶
ImportPkcs12 imports a PKCS12 certificate.
type Panorama ¶
type Panorama struct {
// contains filtered or unexported fields
}
Panorama is the client.Device.Certificate namespace.
func PanoramaNamespace ¶
func PanoramaNamespace(client util.XapiClient) *Panorama
PanoramaNamespace returns an initialized namespace.
func (*Panorama) AllFromPanosConfig ¶
AllFromPanosConfig retrieves all objects stored in the retrieved config.
func (*Panorama) Delete ¶
Delete performs DELETE to remove the specified objects.
Objects can be either a string or an Entry object.
func (*Panorama) Export ¶
func (c *Panorama) Export(format, tmpl, vsys, name, passphrase string, includeKey bool, timeout time.Duration) (string, []byte, error)
Export exports a certificate.
The format param should be either "pem" or "pkcs12".
The public key is always exported.
Attempting to export a PKCS12 cert as a PEM cert will result in an error.
Return values are the filename, file contents, and an error.
func (*Panorama) FromPanosConfig ¶
FromPanosConfig retrieves the object stored in the retrieved config.
func (*Panorama) ImportPkcs12 ¶
ImportPkcs12 imports a PKCS12 certificate.
type Pem ¶
type Pem struct {
Name string
Certificate string
CertificateFilename string
PrivateKey string
PrivateKeyFilename string
Passphrase string
}
Pem is a PEM certificate suitable to be imported into PAN-OS.
Importing the certificate and the private key are two separate API calls. If the PrivateKey is left unspecified, then the 2nd API call will not be made.
Source Files