Run Your First Playbook
This document explains how to run your first FortiAnalyzer Ansible playbook.
With FortiAnalyzer Galaxy collection, you are always recommended to run
FortiAnalyzer module in httpapi manner. The first step is to prepare your
host inventory with which you can use ansible-vault to encrypt or
decrypt your secrets for the sake of confidentiality.
Prepare host inventory
in our case we create a file named hosts:
[fortianalyzers]
fortianalyzer01 ansible_host=192.168.190.130 ansible_user="admin" ansible_password="password"
fortianalyzer02 ansible_host=192.168.190.131 ansible_user="admin" ansible_password="password"
[fortianalyzers:vars]
ansible_network_os=fortinet.fortianalyzer.fortianalyzer
Write the playbook
An Example
in the example: test.yml we are going to create a script on FortiAnalyzer:
- hosts: fortianalyzers
connection: httpapi
collections:
- fortinet.fortianalyzer
vars:
ansible_httpapi_use_ssl: yes
ansible_httpapi_validate_certs: no
ansible_httpapi_port: 443
tasks:
- name: Alert console
faz_cli_system_global:
cli_system_global:
language: english
Parameter Usages
there are several mandatory options in the example:
adom :
adomis the administrative domain that an API is going to run inside. In most cases,globalorrootis what you need.state :
stateis indicating the action the module is going to take. by givingpresent, the module will create or update the object, whileabsenttells the module to delete the object in the FortiAnalyzer.other module specific parameters are defined differently, you can find their usages in each module page.
Run the playbook
ansible-playbook -i hosts test.yml
you can also observe the verbose output by adding option at the tail:
-vvv.