Oracle WebLogic Record
Click here to see this page in full context


Oracle WebLogic Record

GET POST/api/2.0/fo/auth/oracle_weblogic/

Create, update, list and delete Oracle WebLogic records for authenticated scans of Oracle WebLogic Server instances. Supported are vulnerability scans (using VM) and compliance scans (using PC).

What you'll need

- We support these technologies: Oracle WebLogic Server 11g and Oracle WebLogic Server 12c

- Unix authentication is required so you’ll need a Unix record for each host running an Oracle WebLogic Server

Input ParametersInput Parameters

Parameter

Required/Optional

Data Type

Description

action={action}

 Required String 

Specify create, update, delete (using POST) or list (using GET or POST). See List Auth Records for type

echo_request={0|1}

 Optional Integer 

Specify 1 to view (echo) input parameters in the XML output. By default these are not included.

ids={value}

 Required to update or delete record Integer 

Record IDs to update/delete. Specify record IDs and/or ID ranges (for example, 1359-1407). Multiple entries are comma separated.

title={value}

 Required to create record String 

A title for the record. The title must be unique. Maximum 255 characters (ascii).

comments={value}

 Optional to create or update record String 

User defined comments. Maximum of 1999 characters.

installation_path={value}

 Required to create record, optional to update record Path 

The directory where the Oracle WebLogic Server is installed (i.e. Home directory).

Example: /u01/app/oracle/middleware

auto_discover={0|1}

 Optional Integer 

For a create request, we default to auto_discover=1, which means we will use auto discovery to find all domains for you. Specify auto_discover=0 and we will not auto discover domains. For an update request, we will keep the record’s settings as is unless you overwrite them.

auto_discover=0 must be specified with the domain parameter in the same request.

domain={value}

 Optional Integer 

A single Oracle WebLogic Server domain name.

Example: website

The domain parameter must be specified with auto_discover=0 in the same request.

Target Hosts

ips={value}

Required to create record

 

 

Optional to update record

 Integer 

The IP address(es) the server will log into using the record’s credentials. Multiple entries are comma separated.

IPs specified will overwrite existing IPs in the record, and existing IPs will be removed.

This parameter and the add_ips parameter or the remove_ips parameter cannot be specified in the same request.

add_ips={value}

 Optional to update record Integer 

Add IPs and/or ranges to the IPs list for this record. Multiple IPs/ranges are comma separated.

This parameter and the ips parameter cannot be specified in the same request.

remove_ips={value}

 Optional to update record Integer 

IPs to be removed from your record. You may enter a combination of IPs and ranges. Multiple entries are comma separated.

This parameter and the ips parameter cannot be specified in the same request.

network_id={value}

 Optional to create or update record, and valid when the networks feature is enabled Integer 

The network ID for the record.

Sample - Create WebLogic Record, No Auto DiscoverSample - Create WebLogic Record, No Auto Discover

API Request

curl -u "USERNAME:PASSWORD" -H "X-Requested-With: Curl" -X "POST" -d "action=create&installation_path=/u01/app/oracle&auto_discover=0&domain=www.qualys.com&ips=10.10.10.23&title=WEB_ORA_CREATE" "https://<qualys_base_url>/api/2.0/fo/auth/oracle_weblogic/"

XML Output

<!DOCTYPE BATCH_RETURN SYSTEM "https://<qualys_base_url>/api/2.0/batch_return.dtd">
<BATCH_RETURN>
  <RESPONSE>
    <DATETIME>2018-03-10T13:30:49Z</DATETIME>
    <BATCH_LIST>
      <BATCH>
        <TEXT>Successfully Created</TEXT>
        <ID_SET>
          <ID>2707632279</ID>
        </ID_SET>
      </BATCH>
    </BATCH_LIST>
  </RESPONSE>
</BATCH_RETURN>

Sample - Create WebLogic Record, With Auto DiscoverSample - Create WebLogic Record, With Auto Discover

API Request

curl -u "USERNAME:PASSWORD" -H "X-Requested-With: Curl" -X "POST" -d"action=create&installation_path=/u01/app/oracle&auto_discover=1&ips=10.10.10.23&title=ABC_ORA" "https://<qualys_base_url>/api/2.0/fo/auth/oracle_weblogic/"

XML Output

<!DOCTYPE BATCH_RETURN SYSTEM "https://<qualys_base_url>/api/2.0/batch_return.dtd">
<BATCH_RETURN>
  <RESPONSE>
    <DATETIME>2018-03-10T13:42:46Z</DATETIME>
    <BATCH_LIST>
      <BATCH>
        <TEXT>Successfully Created</TEXT>
        <ID_SET>
          <ID>2707642279</ID>
        </ID_SET>
      </BATCH>
    </BATCH_LIST>
  </RESPONSE>
</BATCH_RETURN>

DTDs for Authentication Type "oracle_weblogic"

<platform API server>/api/2.0/batch_return.dtd

<platform API server>/api/2.0/fo/auth/oracle_weblogic/auth_oracle_weblogic_list_output.dtd