Cisco Cisco ASA 5515-X Adaptive Security Appliance
About the ASA REST API
Supported ASA Features
Supported ASA Features
16
• ASA http server authenticates client’s request.
• ASA http server opens the connection to REST Agent using TCP channel, and writes the HTTP request to the
REST Agent.
• ASA http server waits for REST Agent process’s response.
• REST Agent processes API request, picks the session/user info and invokes CLI commands request to LINA
listening on localhost port in ASA. REST Agent includes the session/user info in the request.
• Lina admin handler processes the CLI commands and collects the results output.
• Lina sends the response for the CLI commands request to REST Agent.
• REST Agent prepares the response for REST API request and sends to the ASA http server.
• ASA http server forwards the response to the client. Server doesn’t do any processing on the response received
from REST Agent process.
Supported ASA Features
AAA
The AAA API currently supports configuring AAA-related features of authentication, authorization, and command
privilege.
privilege.
AAA server groups and accounting are not yet supported.
Authentication
api/aaa/authentication
Configure network authentication.
Limitations:
Currently, only the LOCAL server group is supported.
Error Codes:
AAA-UNSUPPORTED-OPERATION - Unsupported operation (POST)
AAA-UNSUPPORTED-SERVER-GROUP - A server group other than LOCAL is specified
AAA-BAD-SERVER-GROUP - Invalid server group specified
AAA-MISSING-SERVER-GROUP - Server group is missing from the data
Authorization
api/aaa/authorization
Configure network authorization.