REST API reference
Retrieve an IPsec or IKE security association
Suggest changes
-
PDF of this doc site
Collection of separate PDF docs
Creating your file...
GET /security/ipsec/security-associations/{uuid}
Introduced In: 9.8
Retrieves a specific IPsec or IKE (Internet Key Exchange) security association.
Related ONTAP commands
-
security ipsec show-ipsecsa -
security ipsec show-ikesa
Parameters
| Name | Type | In | Required | Description |
|---|---|---|---|---|
uuid |
string |
path |
True |
UUID of IPsec or IKE security association. |
fields |
array[string] |
query |
False |
Specify the fields to return. |
Response
Status: 200, Ok| Name | Type | Description |
|---|---|---|
cipher_suite |
string |
Cipher suite for the security association. |
ike |
Objects containing parameters specific to IKE (Internet Key Exchange) security association. |
|
ipsec |
Objects containing parameters specific to IPsec security association. |
|
lifetime |
integer |
Lifetime for the security association in seconds. |
local_address |
string |
Local address of the security association. |
node |
Node with the security association. |
|
policy_name |
string |
Policy name for the security association. |
remote_address |
string |
Remote address of the security association. |
scope |
string |
Set to "svm" for interfaces owned by an SVM. Otherwise, set to "cluster". |
svm |
||
type |
string |
Type of security association, it can be IPsec or IKE (Internet Key Exchange). |
uuid |
string |
Unique identifier of the security association. |
Example response
{
"cipher_suite": "suite_aescbc",
"ike": {
"authentication": "none",
"state": "none"
},
"ipsec": {
"action": "bypass"
},
"node": {
"_links": {
"self": {
"href": "/api/resourcelink"
}
},
"name": "node1",
"uuid": "1cd8a442-86d1-11e0-ae1c-123478563412"
},
"scope": "svm",
"svm": {
"_links": {
"self": {
"href": "/api/resourcelink"
}
},
"name": "svm1",
"uuid": "02c9e252-41be-11e9-81d5-00a0986138f7"
},
"type": "ipsec"
}Error
Status: DefaultONTAP Error Response Codes
| Error Code | Description |
|---|---|
66257118 |
IPsec SA with the specified UUID was not found. |
66257119 |
IPsec SA with the specified UUID was not found. |
| Name | Type | Description |
|---|---|---|
error |
Example error
{
"error": {
"arguments": {
"code": "string",
"message": "string"
},
"code": "4",
"message": "entry doesn't exist",
"target": "uuid"
}
}Definitions
See Definitions
ike
Objects containing parameters specific to IKE (Internet Key Exchange) security association.
| Name | Type | Description |
|---|---|---|
authentication |
string |
Authentication method for internet key exchange protocol. |
initiator_security_parameter_index |
string |
Initiator's security parameter index for the IKE security association. |
is_initiator |
boolean |
Indicates whether or not IKE has been initiated by this node. |
responder_security_parameter_index |
string |
Responder's security parameter index for the IKE security association. |
state |
string |
State of the IKE connection. |
version |
string |
Internet key exchange protocol version. |
inbound
Status for inbound parameters for the IPsec security association.
| Name | Type | Description |
|---|---|---|
bytes |
integer |
Number of inbound bytes for the IPsec security association. |
packets |
integer |
Number of inbound packets for the IPsec security association. |
security_parameter_index |
string |
Inbound security parameter index for the IPSec security association. |
outbound
Status for outbound parameters for the IPsec security association.
| Name | Type | Description |
|---|---|---|
bytes |
integer |
Number of outbound bytes for the IPsec security association. |
packets |
integer |
Number of outbound packets for the IPsec security association. |
security_parameter_index |
string |
Outbound security parameter index for the IPSec security association. |
ipsec
Objects containing parameters specific to IPsec security association.
| Name | Type | Description |
|---|---|---|
action |
string |
Action for the IPsec security association. |
inbound |
Status for inbound parameters for the IPsec security association. |
|
outbound |
Status for outbound parameters for the IPsec security association. |
|
state |
string |
State of the IPsec security association. |
href
| Name | Type | Description |
|---|---|---|
href |
string |
_links
| Name | Type | Description |
|---|---|---|
self |
node
Node with the security association.
| Name | Type | Description |
|---|---|---|
_links |
||
name |
string |
|
uuid |
string |
svm
| Name | Type | Description |
|---|---|---|
_links |
||
name |
string |
The name of the SVM. |
uuid |
string |
The unique identifier of the SVM. |
error_arguments
| Name | Type | Description |
|---|---|---|
code |
string |
Argument code |
message |
string |
Message argument |
error
| Name | Type | Description |
|---|---|---|
arguments |
array[error_arguments] |
Message arguments |
code |
string |
Error code |
message |
string |
Error message |
target |
string |
The target parameter that caused the error. |