{ "id":"/axapi/v3/aam/authentication/server/windows", "type":"object", "node-type":"scalar", "title":"windows", "partition-visibility":"shared", "auto-created-object":1, "description":"\"Windows Server, using Kerberos or NTLM for authentication\"", "properties":{ "uuid":{ "type":"string", "format":"string", "minLength":1, "maxLength":64, "partition-visibility":"shared", "modify-not-allowed":1, "description":"uuid of the object", "optional":true }, "sampling-enable":{ "type":"array", "minItems":1, "items":{ "type":"object" }, "uniqueItems":true, "array":[ { "properties":{ "counters1":{ "type":"string", "format":"enum", "partition-visibility":"shared", "description":"'all': all; 'kerberos-request-send': Total Kerberos Request; 'kerberos-response-get': Total Kerberos Response; 'kerberos-timeout-error': Total Kerberos Timeout; 'kerberos-other-error': Total Kerberos Other Error; 'ntlm-authentication-success': Total NTLM Authentication Success; 'ntlm-authentication-failure': Total NTLM Authentication Failure; 'ntlm-proto-negotiation-success': Total NTLM Protocol Negotiation Success; 'ntlm-proto-negotiation-failure': Total NTLM Protocol Negotiation Failure; 'ntlm-session-setup-success': Total NTLM Session Setup Success; 'ntlm-session-setup-failed': Total NTLM Session Setup Failure; 'kerberos-request-normal': Total Kerberos Normal Request; 'kerberos-request-dropped': Total Kerberos Dropped Request; 'kerberos-response-success': Total Kerberos Success Response; 'kerberos-response-failure': Total Kerberos Failure Response; 'kerberos-response-error': Total Kerberos Error Response; 'kerberos-response-timeout': Total Kerberos Timeout Response; 'kerberos-response-other': Total Kerberos Other Response; 'kerberos-job-start-error': Total Kerberos Job Start Error; 'kerberos-polling-control-error': Total Kerberos Polling Control Error; 'ntlm-prepare-req-success': Total NTLM Prepare Request Success; 'ntlm-prepare-req-failed': Total NTLM Prepare Request Failed; 'ntlm-timeout-error': Total NTLM Timeout; 'ntlm-other-error': Total NTLM Other Error; 'ntlm-request-normal': Total NTLM Normal Request; 'ntlm-request-dropped': Total NTLM Dropped Request; 'ntlm-response-success': Total NTLM Success Response; 'ntlm-response-failure': Total NTLM Failure Response; 'ntlm-response-error': Total NTLM Error Response; 'ntlm-response-timeout': Total NTLM Timeout Response; 'ntlm-response-other': Total NTLM Other Response; 'ntlm-job-start-error': Total NTLM Job Start Error; 'ntlm-polling-control-error': Total NTLM Polling Control Error; 'kerberos-pw-expiry': Total Kerberos password expiry; 'kerberos-pw-change-success': Total Kerberos password change success; 'kerberos-pw-change-failure': Total Kerberos password change failure; 'kerberos-validate-kdc-success': Total Kerberos KDC Validation Success; 'kerberos-validate-kdc-failure': Total Kerberos KDC Validation Failure; 'kerberos-generate-kdc-keytab-success': Total Kerberos KDC Keytab Generation Success; 'kerberos-generate-kdc-keytab-failure': Total Kerberos KDC Keytab Generation Failure; 'kerberos-delete-kdc-keytab-success': Total Kerberos KDC Keytab Deletion Success; 'kerberos-delete-kdc-keytab-failure': Total Kerberos KDC Keytab Deletion Failure; 'kerberos-kdc-keytab-count': Current Kerberos KDC Keytab Count; ", "enum":[ "all", "kerberos-request-send", "kerberos-response-get", "kerberos-timeout-error", "kerberos-other-error", "ntlm-authentication-success", "ntlm-authentication-failure", "ntlm-proto-negotiation-success", "ntlm-proto-negotiation-failure", "ntlm-session-setup-success", "ntlm-session-setup-failed", "kerberos-request-normal", "kerberos-request-dropped", "kerberos-response-success", "kerberos-response-failure", "kerberos-response-error", "kerberos-response-timeout", "kerberos-response-other", "kerberos-job-start-error", "kerberos-polling-control-error", "ntlm-prepare-req-success", "ntlm-prepare-req-failed", "ntlm-timeout-error", "ntlm-other-error", "ntlm-request-normal", "ntlm-request-dropped", "ntlm-response-success", "ntlm-response-failure", "ntlm-response-error", "ntlm-response-timeout", "ntlm-response-other", "ntlm-job-start-error", "ntlm-polling-control-error", "kerberos-pw-expiry", "kerberos-pw-change-success", "kerberos-pw-change-failure", "kerberos-validate-kdc-success", "kerberos-validate-kdc-failure", "kerberos-generate-kdc-keytab-success", "kerberos-generate-kdc-keytab-failure", "kerberos-delete-kdc-keytab-success", "kerberos-delete-kdc-keytab-failure", "kerberos-kdc-keytab-count" ] } } } ] }, "instance-list":{ "type":"array", "minItems":1, "items":{ "type":"instance" }, "uniqueItems":true, "$ref":"/axapi/v3/aam/authentication/server/windows/instance/{name}", "array":[ { "properties":{ "name":{ "type":"string", "format":"string-rlx", "minLength":1, "maxLength":63, "partition-visibility":"shared", "description":"Specify Windows authentication server name", "optional":false }, "host":{ "type":"object", "properties":{ "hostip":{ "type":"string", "format":"host", "minLength":1, "maxLength":31, "partition-visibility":"shared", "not":"hostipv6", "description":"Specify the Windows server's hostname(Length 1-31) or IP address" }, "hostipv6":{ "type":"string", "format":"ipv6-address", "partition-visibility":"shared", "not":"hostip", "description":"Specify the Windows server's IPV6 address" } } }, "timeout":{ "type":"number", "format":"number", "minimum":1, "maximum":255, "default":10, "partition-visibility":"shared", "description":"Specify connection timeout to server, default is 10 seconds", "optional":true }, "auth-protocol":{ "type":"object", "properties":{ "ntlm-disable":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "description":"Disable NTLM authentication protocol" }, "ntlm-version":{ "type":"number", "format":"number", "minimum":1, "maximum":2, "default":2, "partition-visibility":"shared", "description":"Specify NTLM version, default is 2" }, "ntlm-health-check":{ "type":"string", "format":"string", "minLength":1, "maxLength":63, "partition-visibility":"shared", "$ref":"/axapi/v3/health/monitor", "not":"ntlm-health-check-disable", "description":"Check NTLM port's health status" }, "ntlm-health-check-disable":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "not":"ntlm-health-check", "description":"Disable configured NTLM port health check configuration" }, "kerberos-disable":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "description":"Disable Kerberos authentication protocol" }, "kerberos-port":{ "type":"number", "format":"number", "minimum":1, "maximum":65534, "default":88, "partition-visibility":"shared", "description":"Specify the Kerberos port, default is 88" }, "kport-hm":{ "type":"string", "format":"string", "minLength":1, "maxLength":63, "partition-visibility":"shared", "$ref":"/axapi/v3/health/monitor", "not":"kport-hm-disable", "description":"Check Kerberos port's health status" }, "kport-hm-disable":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "not":"kport-hm", "description":"Disable configured Kerberos port health check configuration" }, "kerberos-password-change-port":{ "type":"number", "format":"number", "minimum":1, "maximum":65534, "default":464, "partition-visibility":"shared", "description":"Specify the Kerbros password change port, default is 464" }, "kdc-validate":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "description":"Enable KDC validation" }, "kerberos-kdc-validation":{ "type":"object", "properties":{ "kdc-spn":{ "type":"string", "format":"string-rlx", "minLength":1, "maxLength":63, "partition-visibility":"shared", "description":"Specify SPN for KDC validation" }, "kdc-account":{ "type":"string", "format":"string-rlx", "minLength":1, "maxLength":127, "partition-visibility":"shared", "description":"Specify account for KDC validation" }, "kdc-password":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "description":"Specify account password" }, "kdc-pwd":{ "type":"string", "format":"password", "minLength":1, "maxLength":63, "partition-visibility":"shared", "description":"Account password" }, "encrypted":{ "type":"encrypted", "format":"encrypted", "partition-visibility":"shared", "description":"Do NOT use this option manually. (This is an A10 reserved keyword.)" } } } } }, "realm":{ "type":"string", "format":"string", "minLength":1, "maxLength":63, "partition-visibility":"shared", "description":"Specify realm of Windows server", "optional":true }, "support-apacheds-kdc":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "description":"Enable weak cipher (DES CRC/MD5/MD4) and merge AS-REQ in single packet", "optional":true }, "health-check":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "not":"health-check-disable", "description":"Check server's health status", "optional":true }, "health-check-string":{ "type":"string", "format":"string", "minLength":1, "maxLength":63, "partition-visibility":"shared", "$ref":"/axapi/v3/health/monitor", "description":"Health monitor name", "optional":true }, "health-check-disable":{ "type":"number", "format":"flag", "default":0, "partition-visibility":"shared", "not":"health-check", "description":"Disable configured health check configuration", "optional":true }, "uuid":{ "type":"string", "format":"string", "minLength":1, "maxLength":64, "partition-visibility":"shared", "modify-not-allowed":1, "description":"uuid of the object", "optional":true }, "sampling-enable":{ "type":"array", "minItems":1, "items":{ "type":"object" }, "uniqueItems":true, "array":[ { "properties":{ "counters1":{ "type":"string", "format":"enum", "partition-visibility":"shared", "description":"'all': all; 'krb_send_req_success': Kerberos Request; 'krb_get_resp_success': Kerberos Response; 'krb_timeout_error': Kerberos Timeout; 'krb_other_error': Kerberos Other Error; 'krb_pw_expiry': Kerberos password expiry; 'krb_pw_change_success': Kerberos password change success; 'krb_pw_change_failure': Kerberos password change failure; 'ntlm_proto_nego_success': NTLM Protocol Negotiation Success; 'ntlm_proto_nego_failure': NTLM Protocol Negotiation Failure; 'ntlm_session_setup_success': NTLM Session Setup Success; 'ntlm_session_setup_failure': NTLM Session Setup Failure; 'ntlm_prepare_req_success': NTLM Prepare Request Success; 'ntlm_prepare_req_error': NTLM Prepare Request Error; 'ntlm_auth_success': NTLM Authentication Success; 'ntlm_auth_failure': NTLM Authentication Failure; 'ntlm_timeout_error': NTLM Timeout; 'ntlm_other_error': NTLM Other Error; 'krb_validate_kdc_success': Kerberos KDC Validation Success; 'krb_validate_kdc_failure': Kerberos KDC Validation Failure; ", "enum":[ "all", "krb_send_req_success", "krb_get_resp_success", "krb_timeout_error", "krb_other_error", "krb_pw_expiry", "krb_pw_change_success", "krb_pw_change_failure", "ntlm_proto_nego_success", "ntlm_proto_nego_failure", "ntlm_session_setup_success", "ntlm_session_setup_failure", "ntlm_prepare_req_success", "ntlm_prepare_req_error", "ntlm_auth_success", "ntlm_auth_failure", "ntlm_timeout_error", "ntlm_other_error", "krb_validate_kdc_success", "krb_validate_kdc_failure" ] } } } ] }, "packet-capture-template":{ "type":"string", "format":"string", "minLength":1, "maxLength":128, "partition-visibility":"shared", "$ref":"/axapi/v3/visibility/packet-capture/object-templates/aam-auth-server-win-inst-tmpl", "description":"Name of the packet capture template to be bind with this object", "optional":true } }, "required":[ "name" ] } ] } } }