Create IPSEC Profile (v2.0)
POSThttps://api.sase.paloaltonetworks.com/sdwan/v2.0/api/ipsecprofiles
Create a new IPsec profile.
Request
- application/json
Body
Details of the IPSEC profile to be created
authentication IPSECAuthenticationV1required
The description of the IPsec profile. Max size = 256.
The DPD delay time in seconds (should be between 1-60 seconds) for IKEv1.
If DPD is enabled for the IPsec profile.
The configured DPD timeout period.
esp_group ESPGrouprequired
The ID of the IPsec profile.
ike_group IKEGrouprequired
The name of the IPsec profile. Max size = 128.
An information field that can be added to identify the IPsec profile. Maximum 10 unique tags of length 1024 each are allowed.
Responses
- 200
- 400
Successful Operation
- application/json
- Schema
- Example (auto)
Schema
authentication IPSECAuthenticationV1required
The description of the IPsec profile. Max size = 256.
The DPD delay time in seconds (should be between 1-60 seconds) for IKEv1.
If DPD is enabled for the IPsec profile.
The configured DPD timeout period.
esp_group ESPGrouprequired
The ID of the IPsec profile.
ike_group IKEGrouprequired
The name of the IPsec profile. Max size = 128.
An information field that can be added to identify the IPsec profile. Maximum 10 unique tags of length 1024 each are allowed.
{
"authentication": {
"certificate": "string",
"certificate_profile_id": "string",
"comment": "string",
"ikev1_params": {
"xauth_id": "string",
"xauth_secret": "string",
"xauth_secret_encrypted": "string",
"xauth_secret_hash": "string",
"xauth_type": "NONE"
},
"local_ca_certificate": "string",
"local_id": "LOCAL_IP",
"local_id_custom": "string",
"local_pa_certificate_id": "string",
"pa_master_key_id": "string",
"passphrase": "string",
"passphrase_encrypted": "string",
"peer_id_check": "EXACT",
"permit_peer_id_mismatch": true,
"private_key": "string",
"private_key_encrypted": "string",
"remote_ca_certificate": "string",
"remote_id": "string",
"secret": "string",
"secret_encrypted": "string",
"secret_hash": "string",
"strict_validation_peer_extended_key_use": true,
"type": "NONE",
"x509Objects": {
"certHolder": {},
"certificate": "string",
"is_local_ca_cert_set": true,
"is_remote_ca_cert_set": true,
"keyPair": {},
"local_ca_certificate": "string",
"local_ca_certs_set": [
{}
],
"passphrase": "string",
"private_key": "string",
"remote_ca_certificate": "string",
"remote_ca_certs_set": [
{}
]
}
},
"dpd_delay": 0,
"dpd_enable": true,
"dpd_timeout": 0,
"esp_group": {
"lifetime": 0,
"proposals": [
{
"dh_groups": "NONE",
"encryption": "NONE",
"hash": "MD5"
}
]
},
"id": "string",
"ike_group": {
"lifetime": 0,
"proposals": [
{
"dh_groups": "NONE",
"encryption": "NONE",
"hash": "MD5"
}
]
},
"name": "string",
"tags": [
"string"
]
}
Bad Request
- application/json
- Schema
- Example (auto)
- Example
Schema
_error ErrorResponse[]
{
"_error": [
{
"code": "string",
"message": "string"
}
]
}
{
"value": {
"_error": [
{
"code": "INVALID_JSON_VALUE"
},
{
"code": "IPSECCONFIG_IKEGROUP_REQUIRED"
},
{
"code": "IPSECCONFIG_INVALID_DPD_DELAY"
},
{
"code": "IPSECCONFIG_ESPGROUP_REQUIRED"
},
{
"code": "IPSECCONFIG_AUTHENTICATION_REQUIRED"
},
{
"code": "IPSECCONFIG_INVALID_DPD_TIMEOUT"
}
]
}
}
- curl
- python
- go
- nodejs
- csharp
- php
- CURL
curl -L 'https://api.sase.paloaltonetworks.com/sdwan/v2.0/api/ipsecprofiles' \
-H 'Content-Type: application/json' \
-H 'Accept: application/json' \
-d '{
"authentication": {
"certificate": "string",
"certificate_profile_id": "string",
"comment": "string",
"ikev1_params": {
"xauth_id": "string",
"xauth_secret": "string",
"xauth_secret_encrypted": "string",
"xauth_secret_hash": "string",
"xauth_type": "NONE"
},
"local_ca_certificate": "string",
"local_id": "LOCAL_IP",
"local_id_custom": "string",
"local_pa_certificate_id": "string",
"pa_master_key_id": "string",
"passphrase": "string",
"passphrase_encrypted": "string",
"peer_id_check": "EXACT",
"permit_peer_id_mismatch": true,
"private_key": "string",
"private_key_encrypted": "string",
"remote_ca_certificate": "string",
"remote_id": "string",
"secret": "string",
"secret_encrypted": "string",
"secret_hash": "string",
"strict_validation_peer_extended_key_use": true,
"type": "NONE",
"x509Objects": {
"certHolder": {},
"certificate": "string",
"is_local_ca_cert_set": true,
"is_remote_ca_cert_set": true,
"keyPair": {},
"local_ca_certificate": "string",
"local_ca_certs_set": [
{}
],
"passphrase": "string",
"private_key": "string",
"remote_ca_certificate": "string",
"remote_ca_certs_set": [
{}
]
}
},
"dpd_delay": 0,
"dpd_enable": true,
"dpd_timeout": 0,
"esp_group": {
"lifetime": 0,
"proposals": [
{
"dh_groups": "NONE",
"encryption": "NONE",
"hash": "MD5"
}
]
},
"id": "string",
"ike_group": {
"lifetime": 0,
"proposals": [
{
"dh_groups": "NONE",
"encryption": "NONE",
"hash": "MD5"
}
]
},
"name": "string",
"tags": [
"string"
]
}'