Cisco Unity Connection Provisioning Interface (CUPI) API -- Authentication and Authorization

From DocWiki

(Difference between revisions)
Jump to: navigation, search
(Authentication Rules API)
 
(17 intermediate revisions not shown)
Line 18: Line 18:
__TOC__
__TOC__
-
 
-
== Authentication Rules API ==
 
-
 
-
In Cisco Unity Connection, the authentication rules govern user passwords, PINs, and account lockouts for all user accounts. You use the authentication rules to secure how users access Unity Connection by phone, and how users access Cisco Unity Connection Administration and the Cisco Personal Communications Assistant (Cisco PCA).
 
-
 
-
For example, an authentication rule determines:
 
-
* The number of failed sign-in attempts that are allowed before an account is locked.
 
-
* The number of minutes an account remains locked before it is reset.
 
-
* Whether a locked account must be unlocked manually by an administrator
 
-
* The minimum length allowed for passwords and PINs.
 
-
* The number of days before a password or PIN expires.
 
-
 
-
Administrator can use this API to create/update/delete/fetch the authentication rules. You can update various attributes of authentication rule using this API.
 
-
 
-
By using the following information, you can have a clear understanding about the given:
 
-
* [[doc|Listing the Authentication Rules]]
 
-
* [[doc|Viewing the Specific Authentication Rule]]
 
-
* [[doc|Creating a New Authentication Rule]]
 
-
* [[doc|Updating the Authentication Rule]]
 
-
* [[doc|Delete the Authentication Rule]]
 
-
* [[doc|Explanation of Data Fields]]
 
-
 
-
 
-
 
-
== Listing the Authentication Rules ==
 
-
 
-
The following is an example of the GET request that fetch the list of authentication rules:
 
-
GET https://<connection-server>/vmrest/authenticationrules
 
-
 
-
The following is the response from the above *GET* request and the actual response will depend upon the information given by you:
 
-
 
-
The following is an example of the GET request that fetch the list of authentication rules:
 
-
<pre>
 
-
GET https://<connection-server>/vmrest/authenticationrules
 
-
The following is the response from the above *GET* request and the actual response will depend upon the information given by you:
 
-
<AuthenticationRules total="2">
 
-
<AuthenticationRule>
 
-
<URI>/vmrest/authenticationrules/4ceee1ae-8935-43d2-9d59-fafeb3533a91</URI>
 
-
<ObjectId>4ceee1ae-8935-43d2-9d59-fafeb3533a91</ObjectId>
 
-
<HackResetTime>30</HackResetTime>
 
-
<LocationObjectId>c50a4765-d55a-4c88-b961-45f1b9b481c5</LocationObjectId>
 
-
<LocationURI>/vmrest/locations/connectionlocations/c50a4765-d55a-4c88-b961-45f1b9b481c5</LocationURI>
 
-
<LockoutDuration>30</LockoutDuration>
 
-
<MaxDays>120</MaxDays>
 
-
<MaxHacks>7</MaxHacks>
 
-
<MinLength>8</MinLength>
 
-
<PrevCredCount>5</PrevCredCount>
 
-
<TrivialCredChecking>true</TrivialCredChecking>
 
-
<DisplayName>Recommended Web Application Authentication Rule</DisplayName>
 
-
<MinDuration>1440</MinDuration>
 
-
<ExpiryWarningDays>15</ExpiryWarningDays>
 
-
</AuthenticationRule>
 
-
<AuthenticationRule>
 
-
<URI>/vmrest/authenticationrules/f0575a72-afaa-43f1-bb3b-ae9382a9bfaa</URI>
 
-
<ObjectId>f0575a72-afaa-43f1-bb3b-ae9382a9bfaa</ObjectId>
 
-
<HackResetTime>30</HackResetTime>
 
-
<LocationObjectId>c50a4765-d55a-4c88-b961-45f1b9b481c5</LocationObjectId>
 
-
<LocationURI>/vmrest/locations/connectionlocations/c50a4765-d55a-4c88-b961-45f1b9b481c5</LocationURI>
 
-
<LockoutDuration>30</LockoutDuration>
 
-
<MaxDays>180</MaxDays>
 
-
<MaxHacks>3</MaxHacks>
 
-
<MinLength>6</MinLength>
 
-
<PrevCredCount>5</PrevCredCount>
 
-
<TrivialCredChecking>true</TrivialCredChecking>
 
-
<DisplayName>Recommended Voice Mail Authentication Rule</DisplayName>
 
-
<MinDuration>1440</MinDuration>
 
-
<ExpiryWarningDays>15</ExpiryWarningDays>
 
-
</AuthenticationRule>
 
-
</AuthenticationRules>
 
-
Response Code: 200
 
-
</pre>
 
-
 
-
== JSON Examples ==
 
-
 
-
To get the details of all authentication rules (GET) using JSON, do the following:
 
-
<pre>
 
-
GET https://<connection-server>/vmrest/authenticationrules
 
-
Accept: application /json
 
-
Connection: keep-alive
 
-
</pre>
 
-
The following is the response from the above *GET* request and the actual response will depend upon the information given by you:
 
-
<pre>
 
-
{
 
-
"@total":"2"
 
-
"AuthenticationRule":[
 
-
{
 
-
"URI":"/vmrest/authenticationrules/7b282b66-73b1-4989-9d94-3d105b6ef5e8"
 
-
"ObjectId":"7b282b66-73b1-4989-9d94-3d105b6ef5e8"
 
-
"HackResetTime":"30"
 
-
"LocationObjectId":"830e1a2d-8e90-459f-88f7-700497ba975c"
 
-
"LocationURI":"/vmrest/locations/connectionlocations/830e1a2d-8e90-459f-88f7-700497ba975c"
 
-
"LockoutDuration":"30"
 
-
"MaxDays":"120"
 
-
"MaxHacks":"7"
 
-
"MinLength":"8"
 
-
"PrevCredCount":"5"
 
-
"TrivialCredChecking":"false"
 
-
"DisplayName":"Recommended Web Application Authentication Rule"
 
-
"MinDuration":"1440"
 
-
"ExpiryWarningDays":"15"
 
-
}
 
-
{
 
-
"URI":"/vmrest/authenticationrules/cd86d247-df90-435b-9df6-d94c027bbb20"
 
-
"ObjectId":"cd86d247-df90-435b-9df6-d94c027bbb20"
 
-
"HackResetTime":"30"
 
-
"LocationObjectId":"830e1a2d-8e90-459f-88f7-700497ba975c"
 
-
"LocationURI":"/vmrest/locations/connectionlocations/830e1a2d-8e90-459f-88f7-700497ba975c"
 
-
"LockoutDuration":"30"
 
-
"MaxDays":"180"
 
-
"MaxHacks":"3"
 
-
"MinLength":"6"
 
-
"PrevCredCount":"5"
 
-
"TrivialCredChecking":"true"
 
-
"DisplayName":"Recommended Voice Mail Authentication Rule"
 
-
"MinDuration":"1440"
 
-
"ExpiryWarningDays":"15"
 
-
}
 
-
]
 
-
}
 
-
Response Code: 200
 
-
</pre>
 

Latest revision as of 13:39, 9 September 2013

Links to Other API pages: Cisco_Unity_Connection_APIs

CUPI Guide Contents
API Overview
Index of All CUPI Documentation


Contents


About CUPI Authentication and Authorization

CUPI uses the same authentication and authorization scheme that the administration console uses. This means that the objects an administrator has access to when authenticated are determined by the roles to which the administrator is assigned. 

CUPI authenticates by using standard HTTPS and Basic authentication, so that credentials can be passed by using typical mechanisms to send username and password via HTTP headers.

Rating: 1.0/5 (3 votes cast)

Personal tools