Configuring master profiles (API)
Master profile parameters
Use these parameters in the JSON data structure when you apply the Master policy (POLICY_CODE_MASTER) to the app with app-market/policy.
| Parameter | Description |
|---|---|
| arrayOfProfiles | An array of profile IDs to include in the master policy profile.
|
| associate_policy | Policy IDs or policy codes that are associated with each profile. See Configuring security policies for your apps for a list of policy codes. Use app-policy/catalog to retrieve all policies with IDs. |
You can save this set of policies as a master policy by supplying a name while securing. See app-market/policy for examples.
Master profile API resources
To manage Master profiles, use these resources:
- profile : Use type="master" to create a Master profile. See example below.
- profile/catalog/{policytype} : Use "master" for "{policytype}". GET returns an array of details for all policy profiles of the specified type.
- profile/{GUID} : Use the profile ID to specify a policy profile. GET returns details for the specified profile, PUT updates the details in the specified profile, and DELETE archives the profile.
- settings/master-default-profile ( settings/{policytype}-default-profile ): POST sets one of the Master profiles as the default. GET returns the GUID of the current default profile. DELETE archives the current default.
To retrieve details for the policy:
- app-policy/{GUID} : Use the policy ID to specify a policy. GET returns details for the specified policy.
- app-policy/code/{code} : Use POLICY_CODE_MASTER to specify the policy. GET returns details for the specified policy.
To secure apps with the Master policy:
- app-market/policy : Use the policy GUID to apply the policy to an app.
Creating a Master profile
This example creates a Master profile with the profile API, specifying all options.
Request
BASH
curl -k -v -L -b c.txt -c c.txt -X POST http://bc.qwe.com/mocana-app-control/rest/profile \
-F name="TestProfile" \
-F type="master" \
-F desc="Default Profile" \
-F data="{\"arrayOfProfiles\":{\"app_customization_profiles\":\"9bd06e96-4108-4ea4-88e5-d1dc6ebdccd1\",
\"browser_profiles\":\"093541dc-44e2-4ec6-bdb4-8d146b0b35c5\",
\"client_certs_profiles\":\"98098be0-2efe-4cd2-a7cd-bb99a39219fa\",
\"data_sharing_profiles\":\"223302a1-add2-4bd9-8225-901ff24e697f\",
\"device_posture_profiles\":\"3e2d4774-5b0e-434d-97a2-abb3b5497622\",
\"diagnostics_profiles\":\"bccba42d-4293-402d-88b8-b53876fa1b1e\",
\"dar_profiles\":\"d48ca7bf-6088-4679-b015-7199a279276d\",
\"local_auth_profiles\":\"ce55b60f-025f-4c8d-ba73-ab37d5abe152\",
\"secure_web_stack_profiles\":\"dc5b76b6-1bbb-43fd-9e82-4b453f42677a\",
\"vpn_profiles\":\"e67bfe50-db46-444d-accb-90906828d2be\",
\"trusted_server_certs_profiles\":\"92e920e2-0000-4b54-9021-f0464f386f4f\"},
\"associate_policy\":[\"POLICY_CODE_APP_CUSTOMIZATION\",\"POLICY_CODE_MOCANA_BROWSER\",
\"POLICY_CODE_CLIENT_CERTS\",\"POLICY_CODE_DATA_SHARING\",\"POLICY_CODE_DEVICE_POSTURE\",
\"POLICY_CODE_DIAGNOSTICS\",\"POLICY_CODE_DAR\",\"POLICY_CODE_LOCAL_AUTH\",
\"POLICY_CODE_SECURE_CONNECTION\",\"POLICY_CODE_SECURE_WEB_STACK\",
\"POLICY_CODE_TRUSTED_SERVER_CERTS\",\"POLICY_CODE_FIPS_MAP_NEXT\"]}"