Class hcisakmp:Ikev2Policy (CONCRETE)

Class ID:16123
Class Label: Ikev2 Policy
Encrypted: false - Exportable: false - Persistent: true - Configurable: false - Subject to Quota: Disabled - Abstraction Layer: Logical Model - APIC NX Processing: Enabled
Write Access: [NON CONFIGURABLE]
Read Access: [access-protocol, admin, fabric-protocol, tenant-connectivity, tenant-ext-connectivity, tenant-ext-protocol, tenant-protocol]
Creatable/Deletable: yes (see Container Mos for details)
Semantic Scope: None
Semantic Scope Evaluation Rule: Parent
Monitoring Policy Source: Parent
Monitoring Flags : [ IsObservable: false, HasStats: false, HasFaults: false, HasHealth: false, HasEventRules: false ]

Ikev2 Policy

Naming Rules
RN FORMAT: ikev2policy-{dhGroup}

    [1] PREFIX=ikev2policy- PROPERTY = dhGroup




DN FORMAT: 

[0] cprov-{vendor}/provacc-{[name]}/acct-{[name]}/region-{[regionName]}/context-{[name]}-addr-{[primaryCidr]}/csr-{[name]}/isakmp/inst/ikev2policy-{dhGroup}

[1] acct-{[name]}/region-{[regionName]}/context-{[name]}-addr-{[primaryCidr]}/csr-{[name]}/isakmp/inst/ikev2policy-{dhGroup}

                


Diagram

Super Mo: pol:Instr,
Container Mos: hcisakmp:Inst (deletable:yes),


Containers Hierarchies
[V] top:Root  This class represents the root element in the object hierarchy. All managed objects in the system are descendants of the Root element.
 ├
[V] hcloud:Prov  MOs Cloud Provider
 
 ├
[V] hcloud:ProvAccount  Cloud Provider Account
 
 
 ├
[V] hcloud:Account  Represents a cloud tenant, i.e. both owner and container of cloud resources. It maps 1:1 to fvTenant. Which means that for each fvTenant an hcloudAccount must be created. Depending on the cloud provider it implies different things, as detailed as follows. AWS: hcloudAccount stores cloud account's credentials or just the accoun...
 
 
 
 ├
[V] hcloud:Region  Represents a cloud region managed by CAPIC. Cloud resources will not be deployed in unmanaged regions.
 
 
 
 
 ├
[V] hcloud:Ctx 
 
 
 
 
 
 ├
[V] hcloud:Csr 
 
 
 
 
 
 
 ├
[V] hcisakmp:Entity 
 
 
 
 
 
 
 
 ├
[V] hcisakmp:Inst 
 
 
 
 
 
 
 
 
 ├
[V] hcisakmp:Ikev2Policy  Ikev2 Policy
[V] top:Root  This class represents the root element in the object hierarchy. All managed objects in the system are descendants of the Root element.
 ├
[V] hcloud:Account  Represents a cloud tenant, i.e. both owner and container of cloud resources. It maps 1:1 to fvTenant. Which means that for each fvTenant an hcloudAccount must be created. Depending on the cloud provider it implies different things, as detailed as follows. AWS: hcloudAccount stores cloud account's credentials or just the accoun...
 
 ├
[V] hcloud:Region  Represents a cloud region managed by CAPIC. Cloud resources will not be deployed in unmanaged regions.
 
 
 ├
[V] hcloud:Ctx 
 
 
 
 ├
[V] hcloud:Csr 
 
 
 
 
 ├
[V] hcisakmp:Entity 
 
 
 
 
 
 ├
[V] hcisakmp:Inst 
 
 
 
 
 
 
 ├
[V] hcisakmp:Ikev2Policy  Ikev2 Policy


Contained Hierarchy
[V] hcisakmp:Ikev2Policy  Ikev2 Policy
 ├
[V] fault:Delegate Exposes internal faults to the user. A fault delegate object can be defined on IFC (for example, for an endpoint group) and when the fault is raised (for example, under an endpoint policy on a switch), a fault delegate object is created on IFC under the specified object. A fault delegate object follows the lifecycle of the original fault instance object, being created, modified, or deleted based on the changes of the original fault.


Inheritance
[V] naming:NamedObject An abstract base class for an object that contains a name.
 ├
[V] pol:Obj Represents a generic policy object.
 
 ├
[V] pol:Instr Represents a policy control instrumentation object.
 
 
 ├
[V] hcisakmp:Ikev2Policy  Ikev2 Policy


Events
                


Faults
                


Fsms
                


Properties Summary
Defined in: hcisakmp:Ikev2Policy
hcisakmp:DhGroup
          scalar:Enum16
dhGroup  (hcisakmp:Ikev2Policy:dhGroup)
           Diffie Hellman Group
hcisakmp:Ikev2EncrAlgo
          scalar:Bitmask32
encryption  (hcisakmp:Ikev2Policy:encryption)
           Encryption algorithm for protection suite
hcisakmp:Ikev2IntegrityType
          scalar:Bitmask16
integrity  (hcisakmp:Ikev2Policy:integrity)
           Hash for IKve2 security association
Defined in: pol:Instr
naming:Descr
          string:Basic
descr  (pol:Instr:descr)
           Specifies a control instrumentation description.
Defined in: pol:Obj
naming:Name
          string:Basic
name  (pol:Obj:name)
           Overrides:naming:NamedObject:name
           null
Defined in: naming:NamedObject
naming:NameAlias
          string:Basic
nameAlias  (naming:NamedObject:nameAlias)
           NO COMMENTS
Defined in: mo:Resolvable
mo:Owner
          scalar:Enum8
lcOwn  (mo:Resolvable:lcOwn)
           A value that indicates how this object was created. For internal use only.
Defined in: mo:Modifiable
mo:TStamp
          scalar:Date
modTs  (mo:Modifiable:modTs)
           The time when this object was last modified.
Defined in: mo:TopProps
mo:ModificationChildAction
          scalar:Bitmask32
childAction  (mo:TopProps:childAction)
           Delete or ignore. For internal use only.
reference:BinRef dn  (mo:TopProps:dn)
           A tag or metadata is a non-hierarchical keyword or term assigned to the fabric module.
reference:BinRN rn  (mo:TopProps:rn)
           Identifies an object from its siblings within the context of its parent object. The distinguished name contains a sequence of relative names.
mo:ModificationStatus
          scalar:Bitmask32
status  (mo:TopProps:status)
           The upgrade status. This property is for internal use only.
Properties Detail

childAction

Type: mo:ModificationChildAction
Primitive Type: scalar:Bitmask32

Units: null
Encrypted: false
Access: implicit
Category: TopLevelChildAction
    Comments:
Delete or ignore. For internal use only.
Constants
deleteAll 16384u deleteAll NO COMMENTS
ignore 4096u ignore NO COMMENTS
deleteNonPresent 8192u deleteNonPresent NO COMMENTS
DEFAULT 0 --- This type is used to





descr

Type: naming:Descr
Primitive Type: string:Basic

Like: naming:Described:descr
Units: null
Encrypted: false
Access: admin
Category: TopLevelRegular
    Comments:
Specifies a control instrumentation description.



dhGroup

Type: hcisakmp:DhGroup
Primitive Type: scalar:Enum16

Units: null
Encrypted: false
Naming Property -- [NAMING RULES]
Access: naming
Category: TopLevelRegular
    Comments:
Diffie Hellman Group
Constants
0 0 No Diffie-Hellman group Diffie-Hellman group None
1 1 Diffie-Hellman group 1 (768-bit) Diffie-Hellman group 1
2 2 Diffie-Hellman group 2 (1024-bit) Diffie-Hellman group 2
5 5 Diffie-Hellman group 5 (1536-bit) Diffie-Hellman group 5
14 14 Diffie-Hellman group 14 (2048-bit) Diffie-Hellman group 14
15 15 Diffie-Hellman group 15 (3072-bit) Diffie-Hellman group 15
16 16 Diffie-Hellman group 16 (4096-bit) Diffie-Hellman group 16
19 19 Diffie-Hellman group 19 (256 bit ecp) Diffie-Hellman group 19
20 20 Diffie-Hellman group 20 (384 bit ecp) Diffie-Hellman group 20
21 21 Diffie-Hellman group 21 (521 bit ecp) Diffie-Hellman group 21
24 24 Diffie-Hellman group 24 (2048 bit, 256 bit subgroup) Diffie-Hellman group 24
DEFAULT 1(1) Diffie-Hellman group 1 (768-bit) Diffie-Hellman group 1





dn

Type: reference:BinRef

Units: null
Encrypted: false
Access: implicit
Category: TopLevelDn
    Comments:
A tag or metadata is a non-hierarchical keyword or term assigned to the fabric module.



encryption

Type: hcisakmp:Ikev2EncrAlgo
Primitive Type: scalar:Bitmask32

Units: null
Encrypted: false
Access: implicit
Category: TopLevelRegular
    Comments:
Encryption algorithm for protection suite
Constants
des 0x0u Use the DES algorithim NO COMMENTS
aes-gcm-128 0x10u Combined-mode,128 bit key,16 byte ICV(Authentication Tag) NO COMMENTS
3des 0x1u Use the triple DES algorithim NO COMMENTS
aes-gcm-256 0x20u Combined-mode,256 bit key,16 byte ICV(Authentication Tag) NO COMMENTS
aes-cbc-128 0x2u Use the AES algorithim NO COMMENTS
aes-cbc-192 0x4u Use the AES algorithim NO COMMENTS
aes-cbc-256 0x8u Use the AES algorithim NO COMMENTS
DEFAULT 3des(0x1u) Use the triple DES algorithim NO COMMENTS





integrity

Type: hcisakmp:Ikev2IntegrityType
Primitive Type: scalar:Bitmask16

Units: null
Encrypted: false
Access: implicit
Category: TopLevelRegular
    Comments:
Hash for IKve2 security association
Constants
md5 0x0 Message Digest 5 Message Digest 5
sha1 0x1 Secure Hash Standard Secure Hash Standard
sha256 0x2 Secure Hash Standard 2 (256 bit) Secure Hash Standard 2 (256 bit)
sha384 0x4 Secure Hash Standard 2 (384 bit) Secure Hash Standard 2 (384 bit)
sha512 0x8 Secure Hash Standard 2 (512 bit) Secure Hash Standard 2 (512 bit)
DEFAULT sha256(0x2) Secure Hash Standard 2 (256 bit) Secure Hash Standard 2 (256 bit)





lcOwn

Type: mo:Owner
Primitive Type: scalar:Enum8

Units: null
Encrypted: false
Access: implicit
Category: TopLevelRegular
    Comments:
A value that indicates how this object was created. For internal use only.
Constants
local 0 Local NO COMMENTS
policy 1 Policy NO COMMENTS
replica 2 Replica NO COMMENTS
resolveOnBehalf 3 ResolvedOnBehalf NO COMMENTS
implicit 4 Implicit NO COMMENTS
DEFAULT local(0) Local NO COMMENTS





modTs

Type: mo:TStamp
Primitive Type: scalar:Date

Units: null
Encrypted: false
Access: implicit
Category: TopLevelRegular
    Comments:
The time when this object was last modified.
Constants
never 0ull never NO COMMENTS
DEFAULT never(0ull) never NO COMMENTS





name

Type: naming:Name
Primitive Type: string:Basic

Overrides:naming:NamedObject:name
Units: null Encrypted: false Access: admin Category: TopLevelRegular
    Comments:
null



nameAlias

Type: naming:NameAlias
Primitive Type: string:Basic

Units: null
Encrypted: false
Access: admin
Category: TopLevelRegular
    Comments:
NO COMMENTS



rn

Type: reference:BinRN

Units: null
Encrypted: false
Access: implicit
Category: TopLevelRn
    Comments:
Identifies an object from its siblings within the context of its parent object. The distinguished name contains a sequence of relative names.



status

Type: mo:ModificationStatus
Primitive Type: scalar:Bitmask32

Units: null
Encrypted: false
Access: implicit
Category: TopLevelStatus
    Comments:
The upgrade status. This property is for internal use only.
Constants
created 2u created In a setter method: specifies that an object should be created. An error is returned if the object already exists.
In the return value of a setter method: indicates that an object has been created.
modified 4u modified In a setter method: specifies that an object should be modified
In the return value of a setter method: indicates that an object has been modified.
deleted 8u deleted In a setter method: specifies that an object should be deleted.
In the return value of a setter method: indicates that an object has been deleted.
DEFAULT 0 --- This type controls the life cycle of objects passed in the XML API.

When used in a setter method (such as configConfMo), the ModificationStatus specifies whether an object should be created, modified, deleted or removed.
In the return value of a setter method, the ModificationStatus indicates the actual operation that was performed. For example, the ModificationStatus is set to "created" if the object was created. The ModificationStatus is not set if the object was neither created, modified, deleted or removed.

When invoking a setter method, the ModificationStatus is optional:
If a setter method such as configConfMo is invoked and the ModificationStatus is not set, the system automatically determines if the object should be created or modified.