Cisco
Login
Search
Software Secure Workload
Activity Configure

Secure Workload OpenAPIs Client Server configuration Port Config

Last updated: Jun 09, 2025

Port Config

Configuration of known server ports that are applicable to all IP addresses that belong to a root scope

Push server port configuration

This API can be used to provide hints to Secure Workload algorithms about known server ports for a given root scope. Users can provide a list of known TCP/UDP server ports for a given root scope to aid Secure Workload algorithms with figuring out client server direction correct in flows. Users also have the option of specifying a service name associated with each server port.

There is also a default list of known services that are applicable to all root scopes(hereafter referred to as global services). This list can be overridden at any point by the user.

Service configuration

A service is defined to be a (port, name) pair.

Attribute

Type

Description

port

int

TCP/UDP server port number

name

string

Service name associated with this port (optional)

override_in_conflicts

boolean

Force host to be provider in case of a conflict (optional)

Bulk service configuration

Attribute

Sub-Attribute

Type

Description

server_ports_config

tcp_service_list

List of Service configuration objects.

List of known TCP services

udp_service_list

List of Service configurationobjects.

List of known UDP services

Push services per root scope:

POST /openapi/v1/adm/{root_scope_id}/server_ports_config

Sample python code 


    # contents of below file:
    #{"server_ports_config":
    #    {
    #        "tcp_service_list": [
    #                {
    #                        "port": 80,
    #                        "name" : "http"
    #
    #                },
    #                {
    #                        "port": 53,
    #                        "name" : "dns"
    #                },
    #                {
    #                        "port": 514,
    #                        "name" : "syslog",
    #                        "override_in_conflicts": true
    #                }
    #        ],
    #        "udp_service_list": [
    #                {
    #                        "port": 161
    #                },
    #                {
    #                        "port": 53,
    #                        "name": "dns"
    #                }
    #        ]
    #    }
    #}

    file_path = '/<path_to_file>/server_ports.json'

    # Updating service list for a given root scope
    #restclient.upload(file_path,
    #                  '/openapi/v1/adm/{root_scope_id}/server_ports_config',
    #                  timeout=200) # seconds

 

Above API overwrites the full state of known server port configuration in the backend. If user needs to modify anything, they need re-upload the full configuration after modifications.

Retrieve server port configuration

This API returns list of known server ports in a root scope uploaded by the user. Response is Bulk service configuration. 


    Retrieve configured services per root scope:
        GET /openapi/v1/adm/{root_scope_id}/server_ports_config

    Retrieve configured global services:
        GET /openapi/v1/adm/server_ports_config

Remove server port configuration

This API deletes server port configuration for specified root scope.


    Remove configured services per root scope:
        DELETE /openapi/v1/adm/{root_scope_id}/server_ports_config
Previous topic Host Config Next topic Software Agents