`vcf_vim_host_security`¶

Execution module for host lockdown, local users, and iSCSI.

saltext.vcf.modules.vcf_vim_host_security.lockdown_get(host, profile=None)[source]¶

Return the host’s lockdown mode + exception user list.

CLI Example:

salt '*' vcf_vim_host_security.lockdown_get esxi-01

saltext.vcf.modules.vcf_vim_host_security.lockdown_set(host, mode, profile=None)[source]¶

Set lockdown mode (lockdownDisabled | lockdownNormal | lockdownStrict).

CLI Example:

salt '*' vcf_vim_host_security.lockdown_set esxi-01 lockdownNormal

saltext.vcf.modules.vcf_vim_host_security.lockdown_set_exception_users(host, users, profile=None)[source]¶

Replace the lockdown-mode exception-user list.

CLI Example:

salt '*' vcf_vim_host_security.lockdown_set_exception_users esxi-01 '["root","ops"]'

saltext.vcf.modules.vcf_vim_host_security.user_list(host, search_str='', exact=False, profile=None)[source]¶

List local users matching search_str (empty = all).

CLI Example:

salt '*' vcf_vim_host_security.user_list esxi-01

saltext.vcf.modules.vcf_vim_host_security.user_create(host, username, password, description='', profile=None)[source]¶

Create a local user on the host.

CLI Example:

salt '*' vcf_vim_host_security.user_create esxi-01 ops '<pw>'

saltext.vcf.modules.vcf_vim_host_security.user_update(host, username, password=None, description=None, profile=None)[source]¶

Update an existing local user.

CLI Example:

salt '*' vcf_vim_host_security.user_update esxi-01 ops description="ops user"

saltext.vcf.modules.vcf_vim_host_security.user_delete(host, username, profile=None)[source]¶

Delete a local user.

CLI Example:

salt '*' vcf_vim_host_security.user_delete esxi-01 ops

saltext.vcf.modules.vcf_vim_host_security.iscsi_status(host, profile=None)[source]¶

Return software iSCSI initiator status + targets.

CLI Example:

salt '*' vcf_vim_host_security.iscsi_status esxi-01

saltext.vcf.modules.vcf_vim_host_security.iscsi_enable(host, profile=None)[source]¶

Enable software iSCSI on the host and return the HBA device.

CLI Example:

salt '*' vcf_vim_host_security.iscsi_enable esxi-01

saltext.vcf.modules.vcf_vim_host_security.iscsi_disable(host, profile=None)[source]¶

Disable software iSCSI on the host.

CLI Example:

salt '*' vcf_vim_host_security.iscsi_disable esxi-01

saltext.vcf.modules.vcf_vim_host_security.iscsi_add_send_target(host, address, port=3260, profile=None)[source]¶

Add a Send Targets discovery address.

CLI Example:

salt '*' vcf_vim_host_security.iscsi_add_send_target esxi-01 10.0.0.50

saltext.vcf.modules.vcf_vim_host_security.iscsi_remove_send_target(host, address, port=3260, profile=None)[source]¶

Remove a Send Targets discovery address.

CLI Example:

salt '*' vcf_vim_host_security.iscsi_remove_send_target esxi-01 10.0.0.50

saltext.vcf.modules.vcf_vim_host_security.iscsi_set_chap(host, name, password, direction='prohibited', profile=None)[source]¶

Configure CHAP on the software iSCSI initiator.

CLI Example:

salt '*' vcf_vim_host_security.iscsi_set_chap esxi-01 chap-user '<pw>' direction=required

vcf_vim_host_security¶