#!/bin/bash ## set-aia-settings user=$1 pass=$2 managerfqdn=$3 consoleport=$4 manager=localhost:${4} SID=`curl -k -H "Content-Type: application/json" -X POST "https://${manager}/rest/authentication/login/primary" -d '{"dsCredentials":{"userName":"'${user}'","password":"'${pass}'"}}'` curl -k -v -H "Content-Type: text/xml;charset=UTF-8" -H 'SOAPAction: "systemSettingSet"' "https://${manager}/webservice/Manager" -d \ ''\ ''\ ''\ ''\ ''\ 'CONFIGURATION_AGENTINITIATEDACTIVATION'\ 'NONE'\ '1'\ ''\ ''\ 'CONFIGURATION_AGENTINITIATEDACTIVATIONACTIVEHOST'\ 'NONE'\ '2'\ 'CONFIGURATION_AGENTCOMMUNICATIONS'\ 'NONE'\ '1'\ ''\ ''${SID}''\ ''\ ''\ ' ## get Base Policy policyId policyid=$(curl -ks -H "Content-Type: text/xml;charset=UTF-8" -H 'SOAPAction: "securityProfileRetrieveByName"' "https://${manager}/webservice/Manager" -d 'Base Policy'${SID}'' | xml_grep ID --text_only) echo -e "policyid for Deep Security Manager Policy is $policyid\n" >> aiaSettings.log ## Set Communication Direction to Agent Initated on Base Policy curl -ks -H "Content-Type: text/xml;charset=UTF-8" -H 'SOAPAction: "securityProfileSettingSet"' "https://${manager}/webservice/Manager" -d \ ''\ ''\ ''\ ''\ ''${policyid}''\ ''\ 'CONFIGURATION_AGENTCOMMUNICATIONS'\ 'NONE'\ '1'\ ''\ ''${SID}''\ ''\ ''\ '' ## get Deep Security Virtual Appliance policyId policyid=$(curl -ks -H "Content-Type: text/xml;charset=UTF-8" -H 'SOAPAction: "securityProfileRetrieveByName"' "https://${manager}/webservice/Manager" -d 'Deep Security Virtual Appliance'${SID}'' | xml_grep ID --text_only) echo -e "policyid for Deep Security Virtual Appliance Policy is $policyid\n" >> aiaSettings.log ## Set Communication Direction to Bi-directional on DSVA policy curl -ks -H "Content-Type: text/xml;charset=UTF-8" -H 'SOAPAction: "securityProfileSettingSet"' "https://${manager}/webservice/Manager" -d \ ''\ ''\ ''\ ''\ ''${policyid}''\ ''\ 'CONFIGURATION_AGENTCOMMUNICATIONS'\ 'NONE'\ '3'\ ''\ ''${SID}''\ ''\ ''\ '' ## log out curl -k -X DELETE https://localhost:$4/rest/authentication/logout?sID="$SID" exit