clientauthconfig - Crosswork Network Controller 7.2 APIs

{"type":"model","meta":{"id":"/apps/pubhub/media/crosswork-network-controller-7-2/76fd4bb9d069fd2530d7a02f0b3a4ca00eccfd35/5e144619-25b2-30e4-9a1e-a368d8dadee6","info":{"title":"Crosswork Remote Authentication Server Integration API - Version 1","description":"APIs to support integration of the Crosswork platform and remote authentication servers. TACACS+, LDAP, RADIUS, SSO server types are supported.","contact":{"name":"Crosswork Team, Cisco","email":"support@cisco.com"},"license":{"name":"Cisco Software License Agreement","url":"http://www.cisco.com/public/sw-license-agreement.html"},"version":"7.2.0"},"security":[{"bearerAuth":[]}],"x-parser-conf":{"overview":{"markdownPath":"reference/INFRA/RBAC/auth-remote-v1-overview.md"}},"openapi":"3.0.1","servers":[{"url":"https://{cw_ip}:30603/crosswork/authconfig/v1"}],"securitySchemes":{"bearerAuth":{"type":"apiKey","description":"Use a bearer token to authenticate requests. Include the token in the Authorization header with the prefix 'Bearer '.","name":"Authorization","in":"header"}}},"spec":{"required":["client_auth","custom_oid_reg_expr","custom_oid_type","ocsp_required","ocsp_url1","ocsp_url2","use_custom_ocsp","use_custom_oid"],"type":"object","description":"Configuration for client certificate authentication","properties":{"client_auth":{"type":"boolean","description":"Enables the client certificate authentication"},"use_custom_oid":{"type":"boolean","description":"If enabled, will use the custom OID params for identifying the User Identity Source"},"custom_oid_type":{"type":"string","description":"Defines how to extract the user identity from a client certificate"},"custom_oid_reg_expr":{"type":"string","description":"Single group regular expression to be used as a filter while extracting certificate identity"},"ocsp_required":{"type":"boolean","description":"Enables whether to check the certificate revocation status using online certificate status protocol or not"},"use_custom_ocsp":{"type":"boolean","description":"If enabled, will use the provided oscp_url configuration, else will retrieve from the certificate"},"ocsp_url1":{"type":"string","description":"OSCP server URL for performing validation"},"ocsp_url2":{"type":"string","description":"Optional OSCP server URL for performing validation when ocsp_url1 is not reachable"}},"example":{"client_auth":true,"use_custom_oid":true,"custom_oid_type":"SubjectDN","custom_oid_reg_expr":"CN=(.*?),","ocsp_required":true,"use_custom_ocsp":false,"ocsp_url1":"","ocsp_url2":""},"$$ref":"#/components/schemas/clientauthconfig","title":"clientauthconfig"}}