Class SecurityAPI

Index

Constructors

Methods

substituteUrl makeRequest list_firewallgroups list_firewallrules delete_firewallgroup edit_firewallgroup create_radius_account list_radius_accounts list_radius_profiles delete_radius_account set_radius_account_base set_ips_settings_base set_wlan_mac_filter set_guestlogin_settings set_guestlogin_settings_base set_site_guest_access set_site_snmp

Security

create_firewallgroup

Constructors

constructor

new SecurityAPI(httpClient): SecurityAPI
Parameters
- httpClient: HTTPClient
Returns SecurityAPI
- Defined in api/security/SecurityAPI.ts:19

Methods

`Protected` substituteUrl

substituteUrl(url, site?): string
Substitutes site placeholder in URL
Parameters
- url: string
- site: string = 'default'
Returns string
- Defined in api/security/SecurityAPI.ts:24

`Protected` makeRequest

makeRequest<T>(config, site?): Promise<T>
Makes a request with site substitution and UniFi OS fallback
Type Parameters
- T
Parameters
- config: any
- site: string = 'default'
Returns Promise<T>
- Defined in api/security/SecurityAPI.ts:31

list_firewallgroups

list_firewallgroups(site?, options?): Promise<any>
List firewall groups

Retrieves all firewall groups configured in the UniFi Controller. Firewall groups are used to organize IP addresses or ports for use in firewall rules.
Parameters
- site: string = 'default'
  Site name (defaults to 'default')
- Optional options: {
  signal?: AbortSignal;
  }
  Optional request configuration
  - Optional signal?: AbortSignal
    Optional AbortSignal to cancel the request
Returns Promise<any>
Promise resolving to array of firewall group objects
Throws
When firewall groups retrieval fails

Example
```
// Get all firewall groups
const groups = await securityAPI.list_firewallgroups();
console.log(`Found ${groups.length} firewall groups`);

// Filter by group type
const addressGroups = groups.filter(group => group.group_type === 'address-group');
const portGroups = groups.filter(group => group.group_type === 'port-group');

// Find specific group by name
const serverGroup = groups.find(group => group.name === 'Internal Servers');
```
See
- create_firewallgroup to create new firewall groups
- delete_firewallgroup to remove firewall groups
- list_firewallrules to see how groups are used in rules
PHP: list_firewallgroups() -> return $this->fetch_results('/api/s/' . $this->site . '/list/firewallgroup');
- Defined in api/security/SecurityAPI.ts:189

list_firewallrules

list_firewallrules(site?, options?): Promise<any>
List firewall rules

Retrieves all firewall rules configured in the UniFi Controller. Includes information about rule actions, sources, destinations, and protocols.
Parameters
- site: string = 'default'
  Site name (defaults to 'default')
- Optional options: {
  signal?: AbortSignal;
  }
  Optional request configuration
  - Optional signal?: AbortSignal
    Optional AbortSignal to cancel the request
Returns Promise<any>
Promise resolving to array of firewall rule objects
Throws
When firewall rules retrieval fails

Example
```
// Get all firewall rules
const rules = await securityAPI.list_firewallrules();
console.log(`Found ${rules.length} firewall rules`);

// Filter rules by action
const blockRules = rules.filter(rule => rule.action === 'drop');
const allowRules = rules.filter(rule => rule.action === 'accept');

// Find rules for specific protocol
const httpRules = rules.filter(rule => 
  rule.dst_port === '80' || rule.dst_port === '443'
);

// List enabled rules only
const activeRules = rules.filter(rule => rule.enabled);
```
See
- create_firewallrule to create new firewall rules
- delete_firewallrule to remove firewall rules
- list_firewallgroups to list firewall groups used in rules
PHP: list_firewallrules() -> return $this->fetch_results('/api/s/' . $this->site . '/list/firewallrule');
- Defined in api/security/SecurityAPI.ts:236

delete_firewallgroup

delete_firewallgroup(group_id, site?, options?): Promise<boolean>
Delete firewall group

Deletes a firewall group from the UniFi Controller. Firewall rules using this group will need to be updated before deletion.
Parameters
- group_id: string
  Required Firewall group ID to delete
- site: string = 'default'
  Site name (defaults to 'default')
- Optional options: {
  signal?: AbortSignal;
  }
  Optional request configuration
  - Optional signal?: AbortSignal
    Optional AbortSignal to cancel the request
Returns Promise<boolean>
Promise resolving to true if firewall group deletion was successful
Throws
When group_id is invalid

Throws
When firewall group deletion fails or group is in use

Example
```
// Delete firewall group by ID
await securityAPI.delete_firewallgroup('507f1f77bcf86cd799439011');

// Find and delete firewall group by name
const groups = await securityAPI.list_firewallgroups();
const oldGroup = groups.find(group => group.name === 'Old Servers');
if (oldGroup) {
  await securityAPI.delete_firewallgroup(oldGroup._id);
}
```
Warning
Ensure no firewall rules reference this group before deletion

See
- list_firewallgroups to get firewall group IDs
- list_firewallrules to check if group is used in rules
- create_firewallgroup to create a new firewall group
PHP: delete_firewallgroup($group_id) -> return $this->fetch_results_boolean('/api/s/' . $this->site . '/rest/firewallgroup/' . trim($group_id));
- Defined in api/security/SecurityAPI.ts:281

edit_firewallgroup

edit_firewallgroup(group_id, site_id, group_name, group_type, group_members?, site?, options?): Promise<boolean>
Edit firewall group

Updates an existing firewall group with new members or settings.
Parameters
- group_id: string
  Required Firewall group ID to edit
- site_id: string
  Required Site ID where the group exists
- group_name: string
  Required Updated name for the firewall group
- group_type: "address-group" | "ipv6-address-group" | "port-group"
  Required Type of group: 'address-group', 'ipv6-address-group', or 'port-group'
- group_members: string[] = []
  Optional array of group members (IP addresses or ports)
- site: string = 'default'
  Site name (defaults to 'default')
- Optional options: {
  signal?: AbortSignal;
  }
  Optional request configuration
  - Optional signal?: AbortSignal
    Optional AbortSignal to cancel the request
Returns Promise<boolean>
Promise resolving to true if firewall group update was successful
Throws
When required parameters are invalid

Throws
When firewall group update fails

Example
```
// Update firewall group members
await securityAPI.edit_firewallgroup(
  '507f1f77bcf86cd799439011',
  '507f1f77bcf86cd799439012',
  'Updated Server Group',
  'address-group',
  ['192.168.1.10', '192.168.1.11', '192.168.1.20']
);

// Add new members to existing group
const groups = await securityAPI.list_firewallgroups();
const serverGroup = groups.find(g => g.name === 'Web Servers');
if (serverGroup) {
  const updatedMembers = [...serverGroup.group_members, '192.168.1.30'];
  await securityAPI.edit_firewallgroup(
    serverGroup._id,
    serverGroup.site_id,
    serverGroup.name,
    serverGroup.group_type,
    updatedMembers
  );
}
```
See
- list_firewallgroups to get group information
- create_firewallgroup to create new firewall groups
- delete_firewallgroup to remove firewall groups
PHP: edit_firewallgroup($group_id, $site_id, $group_name, $group_type, $group_members = [])
- Defined in api/security/SecurityAPI.ts:344

create_radius_account

create_radius_account(name, x_password, tunnel_type?, tunnel_medium_type?, vlan?, site?, options?): Promise<any>
Create RADIUS account

Creates a new RADIUS user account for network authentication. RADIUS accounts are used for enterprise wireless authentication.
Parameters
- name: string
  Required Username for the RADIUS account
- x_password: string
  Required Password for the RADIUS account
- Optional tunnel_type: number
  Optional tunnel type for VLAN assignment
- Optional tunnel_medium_type: number
  Optional tunnel medium type
- Optional vlan: number
  Optional VLAN ID to assign to this user
- site: string = 'default'
  Site name (defaults to 'default')
- Optional options: {
  signal?: AbortSignal;
  }
  Optional request configuration
  - Optional signal?: AbortSignal
    Optional AbortSignal to cancel the request
Returns Promise<any>
Promise resolving to the created RADIUS account object
Throws
When name or password validation fails

Throws
When RADIUS account creation fails

Example
```
// Create basic RADIUS account
await securityAPI.create_radius_account('john.doe', 'securePassword123');

// Create RADIUS account with VLAN assignment
await securityAPI.create_radius_account(
  'guest.user',
  'guestPass456',
  13,  // VLAN tunnel type
  6,   // IEEE 802 tunnel medium
  100  // VLAN ID
);
```
See
- list_radius_accounts to list existing RADIUS accounts
- delete_radius_account to remove RADIUS accounts
- set_radius_account_base to update RADIUS account settings
PHP: create_radius_account($name, $x_password, $tunnel_type = null, $tunnel_medium_type = null, $vlan = null)
- Defined in api/security/SecurityAPI.ts:424

list_radius_accounts

list_radius_accounts(site?, options?): Promise<any>
List RADIUS accounts

Retrieves all RADIUS user accounts configured in the UniFi Controller.
Parameters
- site: string = 'default'
  Site name (defaults to 'default')
- Optional options: {
  signal?: AbortSignal;
  }
  Optional request configuration
  - Optional signal?: AbortSignal
    Optional AbortSignal to cancel the request
Returns Promise<any>
Promise resolving to array of RADIUS account objects
Throws
When RADIUS accounts retrieval fails

Example
```
// Get all RADIUS accounts
const accounts = await securityAPI.list_radius_accounts();
console.log(`Found ${accounts.length} RADIUS accounts`);

// Find accounts with VLAN assignments
const vlanAccounts = accounts.filter(account => account.vlan);

// Find specific account by name
const userAccount = accounts.find(account => account.name === 'john.doe');
```
See
- create_radius_account to create new RADIUS accounts
- delete_radius_account to remove RADIUS accounts
- list_radius_profiles to list RADIUS server profiles
PHP: list_radius_accounts() -> return $this->fetch_results('/api/s/' . $this->site . '/rest/account');
- Defined in api/security/SecurityAPI.ts:489

list_radius_profiles

list_radius_profiles(site?, options?): Promise<any>
List RADIUS profiles

Retrieves all RADIUS server profiles configured in the UniFi Controller. RADIUS profiles define the authentication servers used for enterprise security.
Parameters
- site: string = 'default'
  Site name (defaults to 'default')
- Optional options: {
  signal?: AbortSignal;
  }
  Optional request configuration
  - Optional signal?: AbortSignal
    Optional AbortSignal to cancel the request
Returns Promise<any>
Promise resolving to array of RADIUS profile objects
Throws
When RADIUS profiles retrieval fails

Example
```
// Get all RADIUS profiles
const profiles = await securityAPI.list_radius_profiles();
console.log(`Found ${profiles.length} RADIUS profiles`);

// Find active profiles
const activeProfiles = profiles.filter(profile => profile.enabled);

// Find profiles by authentication type
const eapProfiles = profiles.filter(profile => profile.auth_type === 'eap');
```
See
- create_radius_profile to create new RADIUS profiles
- list_radius_accounts to list RADIUS user accounts
PHP: list_radius_profiles() -> return $this->fetch_results('/api/s/' . $this->site . '/rest/radiusprofile');
- Defined in api/security/SecurityAPI.ts:529

delete_radius_account

delete_radius_account(account_id, site?, options?): Promise<boolean>
Delete RADIUS account

Removes a RADIUS user account from the UniFi Controller.
Parameters
- account_id: string
  Required RADIUS account ID to delete
- site: string = 'default'
  Site name (defaults to 'default')
- Optional options: {
  signal?: AbortSignal;
  }
  Optional request configuration
  - Optional signal?: AbortSignal
    Optional AbortSignal to cancel the request
Returns Promise<boolean>
Promise resolving to true if RADIUS account deletion was successful
Throws
When account_id is invalid

Throws
When RADIUS account deletion fails

Example
```
// Delete RADIUS account by ID
await securityAPI.delete_radius_account('507f1f77bcf86cd799439011');

// Find and delete RADIUS account by name
const accounts = await securityAPI.list_radius_accounts();
const oldAccount = accounts.find(account => account.name === 'old.user');
if (oldAccount) {
  await securityAPI.delete_radius_account(oldAccount._id);
}
```
See
- list_radius_accounts to get RADIUS account IDs
- create_radius_account to create new RADIUS accounts
PHP: delete_radius_account($account_id) -> return $this->fetch_results_boolean('/api/s/' . $this->site . '/rest/account/' . trim($account_id));
- Defined in api/security/SecurityAPI.ts:570

set_radius_account_base

set_radius_account_base(account_id, payload, site?, options?): Promise<boolean>
Update RADIUS account, base

Updates an existing RADIUS account with new settings.
Parameters
- account_id: string
  Required RADIUS account ID to update
- payload: any
  Required Update payload with new account settings
- site: string = 'default'
  Site name (defaults to 'default')
- Optional options: {
  signal?: AbortSignal;
  }
  Optional request configuration
  - Optional signal?: AbortSignal
    Optional AbortSignal to cancel the request
Returns Promise<boolean>
Promise resolving to true if RADIUS account update was successful
Throws
When account_id is invalid

Throws
When RADIUS account update fails

Example
```
// Update RADIUS account password
await securityAPI.set_radius_account_base('507f1f77bcf86cd799439011', {
  x_password: 'newSecurePassword123'
});

// Update RADIUS account with VLAN assignment
await securityAPI.set_radius_account_base('507f1f77bcf86cd799439011', {
  name: 'updated.user',
  vlan: 200,
  tunnel_type: 13,
  tunnel_medium_type: 6
});
```
See
- list_radius_accounts to get account information
- create_radius_account to create new RADIUS accounts
- delete_radius_account to remove RADIUS accounts
PHP: set_radius_account_base($account_id, $payload) -> return $this->fetch_results_boolean('/api/s/' . $this->site . '/rest/account/' . trim($account_id), $payload);
- Defined in api/security/SecurityAPI.ts:620

set_ips_settings_base

set_ips_settings_base(payload, site?, options?): Promise<boolean>
Update IPS/IDS settings, base

Updates Intrusion Prevention System (IPS) and Intrusion Detection System (IDS) settings. These settings control network threat detection and prevention capabilities.
Parameters
- payload: any
  Required IPS/IDS configuration payload
- site: string = 'default'
  Site name (defaults to 'default')
- Optional options: {
  signal?: AbortSignal;
  }
  Optional request configuration
  - Optional signal?: AbortSignal
    Optional AbortSignal to cancel the request
Returns Promise<boolean>
Promise resolving to true if IPS/IDS settings update was successful
Throws
When IPS/IDS settings update fails

Example
```
// Enable IPS with basic settings
await securityAPI.set_ips_settings_base({
  enabled: true,
  mode: 'detection',
  suppress_alerts: false
});

// Configure IPS with custom rules
await securityAPI.set_ips_settings_base({
  enabled: true,
  mode: 'prevention',
  suppress_alerts: true,
  categories: ['malware', 'botnet', 'exploit'],
  sensitivity: 'medium'
});

// Disable IPS/IDS
await securityAPI.set_ips_settings_base({
  enabled: false
});
```
Warning
IPS/IDS settings affect network performance and security. Test thoroughly before deployment.

See
list_settings to view current IPS/IDS settings

PHP: set_ips_settings_base($payload) -> return $this->fetch_results_boolean('/api/s/' . $this->site . '/set/setting/ips', $payload);
- Defined in api/security/SecurityAPI.ts:687

set_wlan_mac_filter

set_wlan_mac_filter(wlan_id, mac_filter_policy, mac_filter_enabled, macs, site?, options?): Promise<boolean>
Set WLAN MAC filter

Configures MAC address filtering for a wireless network (WLAN). MAC filtering provides an additional layer of access control by allowing or denying specific devices based on their MAC addresses.
Parameters
- wlan_id: string
  Required WLAN ID to configure MAC filtering for
- mac_filter_policy: "allow" | "deny"
  Required Filter policy: 'allow' (whitelist) or 'deny' (blacklist)
- mac_filter_enabled: boolean
  Required Whether MAC filtering is enabled
- macs: string[]
  Required Array of MAC addresses to filter
- site: string = 'default'
  Site name (defaults to 'default')
- Optional options: {
  signal?: AbortSignal;
  }
  Optional request configuration
  - Optional signal?: AbortSignal
    Optional AbortSignal to cancel the request
Returns Promise<boolean>
Promise resolving to true if MAC filter configuration was successful
Throws
When required parameters are invalid

Throws
When MAC filter configuration fails

Example
```
// Allow only specific devices (whitelist)
await securityAPI.set_wlan_mac_filter(
  '507f1f77bcf86cd799439011',
  'allow',
  true,
  ['aa:bb:cc:dd:ee:ff', '11:22:33:44:55:66']
);

// Block specific devices (blacklist)
await securityAPI.set_wlan_mac_filter(
  '507f1f77bcf86cd799439011',
  'deny',
  true,
  ['ff:ee:dd:cc:bb:aa', '66:55:44:33:22:11']
);

// Disable MAC filtering
await securityAPI.set_wlan_mac_filter(
  '507f1f77bcf86cd799439011',
  'allow',
  false,
  []
);
```
Warning
MAC filtering can be bypassed by MAC address spoofing. Use in combination with other security measures.

See
- list_wlanconf to get WLAN IDs
- create_wlan to create new WLANs with security settings
PHP: set_wlan_mac_filter($wlan_id, $mac_filter_policy, $mac_filter_enabled, $macs) -> return $this->set_wlansettings_base($wlan_id, $payload);
- Defined in api/security/SecurityAPI.ts:754

set_guestlogin_settings

set_guestlogin_settings(portal_enabled, portal_customized, redirect_enabled, redirect_url, x_password, expire_number, expire_unit, section_id, site?, options?): Promise<boolean>
Update guest login settings

Configures guest portal settings for wireless networks. Controls how guests authenticate and access the network.
Parameters
- portal_enabled: boolean
  Required Whether guest portal is enabled
- portal_customized: boolean
  Required Whether to use custom portal design
- redirect_enabled: boolean
  Required Whether to redirect after authentication
- redirect_url: string
  Required URL to redirect guests after authentication
- x_password: string
  Required Guest portal password (if required)
- expire_number: number
  Required Session expiration number
- expire_unit: number
  Required Session expiration unit (minutes/hours/days)
- section_id: string
  Required Guest access section ID
- site: string = 'default'
  Site name (defaults to 'default')
- Optional options: {
  signal?: AbortSignal;
  }
  Optional request configuration
  - Optional signal?: AbortSignal
    Optional AbortSignal to cancel the request
Returns Promise<boolean>
Promise resolving to true if guest login settings update was successful
Throws
When required parameters are invalid

Throws
When guest login settings update fails

Example
```
// Configure guest portal with password
await securityAPI.set_guestlogin_settings(
  true,    // portal enabled
  false,   // use default portal design
  true,    // redirect after auth
  'https://company.com/welcome',
  'guest123',  // portal password
  4,       // expire after 4
  3600,    // hours (3600 seconds = 1 hour)
  '507f1f77bcf86cd799439011'
);

// Simple guest access without password
await securityAPI.set_guestlogin_settings(
  true,    // portal enabled
  false,   // default design
  false,   // no redirect
  '',      // no redirect URL
  '',      // no password required
  24,      // expire after 24
  3600,    // hours
  '507f1f77bcf86cd799439011'
);
```
See
- set_guestlogin_settings_base for advanced guest settings
- authorize_guest to manually authorize guest devices
- list_guests to view current guest sessions
PHP: set_guestlogin_settings($portal_enabled, $portal_customized, $redirect_enabled, $redirect_url, $x_password, $expire_number, $expire_unit, $section_id)
- Defined in api/security/SecurityAPI.ts:843

set_guestlogin_settings_base

set_guestlogin_settings_base(payload, section_id?, site?, options?): Promise<boolean>
Update guest login settings, base

Advanced method for updating guest access settings with custom payload. Provides more flexibility than the standard guest login settings method.
Parameters
- payload: any
  Required Guest access configuration payload
- section_id: string = ''
  Optional section ID for specific guest access configuration
- site: string = 'default'
  Site name (defaults to 'default')
- Optional options: {
  signal?: AbortSignal;
  }
  Optional request configuration
  - Optional signal?: AbortSignal
    Optional AbortSignal to cancel the request
Returns Promise<boolean>
Promise resolving to true if guest login settings update was successful
Throws
When guest login settings update fails

Example
```
// Advanced guest portal configuration
await securityAPI.set_guestlogin_settings_base({
  portal_enabled: true,
  portal_customized: true,
  portal_use_hostname: false,
  redirect_enabled: true,
  redirect_url: 'https://company.com/guest-welcome',
  redirect_to_https: true,
  auth_cache: true,
  expire_enabled: true,
  expire_number: 8,
  expire_unit: 3600,
  template_engine: 'angular'
}, '507f1f77bcf86cd799439011');

// Update global guest settings
await securityAPI.set_guestlogin_settings_base({
  portal_enabled: false,
  auth_cache: false
});
```
See
- set_guestlogin_settings for standard guest portal configuration
- set_site_guest_access for site-specific guest access settings
PHP: set_guestlogin_settings_base($payload, $section_id = '') -> return $this->fetch_results_boolean('/api/s/' . $this->site . '/set/setting/guest_access' . $section_id, $payload);
- Defined in api/security/SecurityAPI.ts:923

set_site_guest_access

set_site_guest_access(guest_access_id, payload, site?, options?): Promise<boolean>
Update site guest access settings

Updates guest access settings for a specific site configuration.
Parameters
- guest_access_id: string
  Required Guest access configuration ID
- payload: any
  Required Guest access settings payload
- site: string = 'default'
  Site name (defaults to 'default')
- Optional options: {
  signal?: AbortSignal;
  }
  Optional request configuration
  - Optional signal?: AbortSignal
    Optional AbortSignal to cancel the request
Returns Promise<boolean>
Promise resolving to true if site guest access settings update was successful
Throws
When guest_access_id is invalid

Throws
When site guest access settings update fails

Example
```
// Update site-specific guest access
await securityAPI.set_site_guest_access('507f1f77bcf86cd799439011', {
  portal_enabled: true,
  portal_customized: false,
  auth_cache: true,
  expire_number: 24,
  expire_unit: 3600
});
```
See
- set_guestlogin_settings for standard guest portal configuration
- set_guestlogin_settings_base for advanced guest settings
PHP: set_site_guest_access($guest_access_id, $payload) -> return $this->fetch_results_boolean('/api/s/' . $this->site . '/rest/setting/guest_access/' . trim($guest_access_id), $payload);
- Defined in api/security/SecurityAPI.ts:972

set_site_snmp

set_site_snmp(snmp_id, payload, site?, options?): Promise<boolean>
Update site SNMP settings

Configures SNMP (Simple Network Management Protocol) settings for network monitoring. SNMP settings control how network devices can be monitored and managed remotely.
Parameters
- snmp_id: string
  Required SNMP configuration ID
- payload: any
  Required SNMP configuration payload
- site: string = 'default'
  Site name (defaults to 'default')
- Optional options: {
  signal?: AbortSignal;
  }
  Optional request configuration
  - Optional signal?: AbortSignal
    Optional AbortSignal to cancel the request
Returns Promise<boolean>
Promise resolving to true if SNMP settings update was successful
Throws
When snmp_id is invalid

Throws
When SNMP settings update fails

Example
```
// Enable SNMP v2c with community string
await securityAPI.set_site_snmp('507f1f77bcf86cd799439011', {
  enabled: true,
  version: 'v2c',
  community: 'public',
  contact: 'admin@company.com',
  location: 'Server Room A'
});

// Configure SNMP v3 with authentication
await securityAPI.set_site_snmp('507f1f77bcf86cd799439011', {
  enabled: true,
  version: 'v3',
  username: 'snmpuser',
  auth_protocol: 'SHA',
  auth_password: 'authPassword123',
  priv_protocol: 'AES',
  priv_password: 'privPassword456'
});

// Disable SNMP
await securityAPI.set_site_snmp('507f1f77bcf86cd799439011', {
  enabled: false
});
```
Warning
SNMP v1 and v2c use plain-text community strings. Use SNMP v3 for secure environments.

See
list_settings to view current SNMP settings

PHP: set_site_snmp($snmp_id, $payload) -> return $this->fetch_results_boolean('/api/s/' . $this->site . '/rest/setting/snmp/' . trim($snmp_id), $payload);
- Defined in api/security/SecurityAPI.ts:1045

Security

create_firewallgroup

create_firewallgroup(group_name, group_type, group_members?, site?, options?): Promise<any>
Create firewall group

Creates a new firewall group for organizing IP addresses or ports. Firewall groups simplify rule management by grouping related addresses or ports.
Parameters
- group_name: string
  Required Name for the firewall group
- group_type: "address-group" | "ipv6-address-group" | "port-group"
  Required Type of group: 'address-group', 'ipv6-address-group', or 'port-group'
- group_members: string[] = []
  Optional array of group members (IP addresses or ports)
- site: string = 'default'
  Site name (defaults to 'default')
- Optional options: {
  signal?: AbortSignal;
  }
  Optional request configuration
  - Optional signal?: AbortSignal
    Optional AbortSignal to cancel the request
Returns Promise<any>
Promise resolving to the created firewall group object
Throws
When group_name or group_type validation fails

Throws
When firewall group creation fails

Example
```
// Create address group for internal servers
const serverGroup = await securityAPI.create_firewallgroup(
  'Internal Servers',
  'address-group',
  ['192.168.1.10', '192.168.1.11', '192.168.1.12']
);

// Create port group for web services
await securityAPI.create_firewallgroup(
  'Web Ports',
  'port-group',
  ['80', '443', '8080', '8443']
);

// Create IPv6 address group
await securityAPI.create_firewallgroup(
  'IPv6 Servers',
  'ipv6-address-group',
  ['2001:db8::1', '2001:db8::2']
);

// Create empty group (add members later)
await securityAPI.create_firewallgroup('DMZ Hosts', 'address-group');
```
See
- list_firewallgroups to list existing firewall groups
- delete_firewallgroup to remove a firewall group
- edit_firewallgroup to modify firewall group members
PHP: create_firewallgroup($group_name, $group_type, $group_members = [])
- Defined in api/security/SecurityAPI.ts:134

Class SecurityAPI

Index

Constructors

Methods

Security

Constructors

constructor

Parameters

Returns SecurityAPI

Methods

Protected substituteUrl

Parameters

Returns string

Protected makeRequest

Type Parameters

Parameters

Returns Promise<T>

list_firewallgroups

Parameters

Optional signal?: AbortSignal

Returns Promise<any>

Throws

Example

See

list_firewallrules

Parameters

Optional signal?: AbortSignal

Returns Promise<any>

Throws

Example

See

delete_firewallgroup

Parameters

Optional signal?: AbortSignal

Returns Promise<boolean>

Throws

Throws

Example

Warning

See

edit_firewallgroup

Parameters

Optional signal?: AbortSignal

Returns Promise<boolean>

Throws

Throws

Example

See

create_radius_account

Parameters

Optional signal?: AbortSignal

Returns Promise<any>

Throws

Throws

Example

See

list_radius_accounts

Parameters

Optional signal?: AbortSignal

Returns Promise<any>

Throws

Example

See

list_radius_profiles

Parameters

Optional signal?: AbortSignal

Returns Promise<any>

Throws

Example

See

delete_radius_account

Parameters

Optional signal?: AbortSignal

Returns Promise<boolean>

Throws

Throws

Example

See

set_radius_account_base

Parameters

`Protected` substituteUrl

`Protected` makeRequest

`Optional` signal?: AbortSignal

`Optional` signal?: AbortSignal

`Optional` signal?: AbortSignal

`Optional` signal?: AbortSignal

`Optional` signal?: AbortSignal

`Optional` signal?: AbortSignal

`Optional` signal?: AbortSignal

`Optional` signal?: AbortSignal

`Optional` signal?: AbortSignal

`Optional` signal?: AbortSignal

`Optional` signal?: AbortSignal

`Optional` signal?: AbortSignal

`Optional` signal?: AbortSignal

`Optional` signal?: AbortSignal

`Optional` signal?: AbortSignal

`Optional` signal?: AbortSignal