F5 iControl REST API - viewBy Parameter Issue in Analytics Report
Hi everyone, I'm currently working with the F5 iControl REST API to generate an analytics report from the Application Security Manager (ASM) module. According to the F5 documentation, the API endpoint for generating a report is: /mgmt/tm/analytics/application-security/report Reference https://clouddocs.f5.com/api/icontrol-rest/APIRef_tm_analytics_application-security_report.html Issue Description The API documentation states that the viewBy parameter is required. However, I encountered conflicting behaviors: If I don't provide viewBy, the API response states that it is required. {"code":400,"message":"You must enter a view-by entity name","errorStack":[],"apiError":26214401} If I provide viewBy (e.g., attack-type), the API returns a 400 Bad Request error with the message:{"code":400,"message":"Query parameter viewBy is invalid.","errorStack":[],"apiError":1} I also tried both view-by/viewBy/viewby, but neither worked. My Test Code Here is the Python script I used to call the API: # API Endpoint API_ENDPOINT = "/mgmt/tm/analytics/application-security/report" # Query Parameters params = { "view-by": "attack-type" } Questions What are the valid values for the viewBy parameter? Has anyone successfully used this API endpoint? If so, could you share a working example? Any help or insights would be greatly appreciated. Thanks in advance!
Hi - Need to export VIP name, IP, status (offline/available/unknown), pool and Poolmembers
Hi, I went through many articles but couldn't find any script for a consolidated report that would have these details: VIP name VIP IP VIP Status (offline/available/unknown) pool poolmembers I did find separate articles though but not a consolidated one. I am new and not verse with scripting. https://my.f5.com/manage/s/article/K72255145 https://my.f5.com/manage/s/article/K000135606 If anyone can please help with this required script it would be of great help. Thanks in advance. Regards, Ravi
How to generate ASM report from a pre-defined filter using TMSH
Is there a way to generate a report using a pre-defined report (filter) using CLI (TMSH)? Though I should be able to generate the same report by typing down the filter for the report in TMSH but TMSH does not understand the Drilldown for Security Policy for some reason. For instanace, when I try to run the following command it is not able to identify the Policy save analytics application-security report view-by attack-type measures { occurrences } drilldown {{ entity policy values { My_Security_Policy_Name } } } format pdf file foo.pdf range now-3w The error I get for above is : Data Input Error: Invalid entity value My_Security_Policy_Name This is strange because I am able to see and set Security Policies in the filter in GUI. I am using Big-IP 12.1.0.
SSL Certificate Usage Report
Our client has an fast approaching, expiring SHA1 SSL certificate and we need to plan for importing the new cert, creating a new Profile and and updating all LTM Virtuals accross all VCMP's Before we can do this, we need to identify the SSL Cert used in each SSL client profile on each VS on each VCMP! I have tried using the command: tmsh list / ltm virtual one-line | grep $cert But this doesn't always list VS that are in different partitions other than /Common Is there an easier way to identify which VS uses the SSL Cert used in each SSL client profile? To make matters worse, the previous company that set up the implemented different names and variations of client ssl profiles that use various combinations of the same certificate or a different file of the same certificate! Note: We also have two VCMP's licenced with the APM module, which may or may not be of importance here.
