Support to Get IKE Security Associations on Virtual Network Gateway Connections

src/Network/Network.Test/ScenarioTests/VirtualNetworkGatewayConnectionTests.ps1

@@ -280,7 +280,7 @@ function Test-VirtualNetworkGatewayConnectionWithIpsecPoliciesCRUD
 	  Assert-AreEqual $connection.IpsecPolicies[0].DhGroup $actual.IpsecPolicies[0].DhGroup
 	  Assert-AreEqual $connection.IpsecPolicies[0].PfsGroup $actual.IpsecPolicies[0].PfsGroup
       Assert-AreEqual 30 $connection.DpdTimeoutSeconds
-    
+
 	  # Set & Get VirtualNetworkGatewayConnection with policy cleared
       $job = Set-AzVirtualNetworkGatewayConnection -VirtualNetworkGatewayConnection $connection -UsePolicyBasedTrafficSelectors $false -IpsecPolicies @() -DpdTimeoutInSeconds 10 -Force -AsJob
 	  $job | Wait-Job

src/Network/Network/Az.Network.psd1

@@ -324,6 +324,7 @@ CmdletsToExport = 'Add-AzApplicationGatewayAuthenticationCertificate',
                'Get-AzLocalNetworkGateway', 'New-AzLocalNetworkGateway', 
                'Set-AzLocalNetworkGateway', 
                'Get-AzVirtualNetworkGatewayConnection', 
+               'Get-AzVirtualNetworkGatewayConnectionIkeSa',
                'Get-AzVirtualNetworkGatewayConnectionSharedKey', 
                'New-AzVirtualNetworkGatewayConnection', 
                'Remove-AzVirtualNetworkGatewayConnection', 

src/Network/Network/ChangeLog.md

@@ -36,6 +36,8 @@
     - Added parameter -IntrusionDetection
     - Added parameter -TransportSecurityName
     - Added parameter -TransportSecurityKeyVaultSecretId
+* Adding new cmdlet to fetch IKE Security Associations for Virtual Network Gateway Connections.
+    - `Get-AzVirtualNetworkGatewayConnectionIkeSa`
 
 ## Version 4.3.0
 * Updated below cmdlet 

src/Network/Network/Models/PSVirtualNetworkGatewayConnectionIkeSa.cs

@@ -0,0 +1,124 @@
+// ----------------------------------------------------------------------------------
+//
+// Copyright Microsoft Corporation
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+// http://www.apache.org/licenses/LICENSE-2.0
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+// ----------------------------------------------------------------------------------
+
+namespace Microsoft.Azure.Commands.Network.Models
+{
+    using Microsoft.WindowsAzure.Commands.Common.Attributes;
+    using System;
+    using System.Collections.Generic;
+
+    public class PSVirtualNetworkGatewayConnectionIkeSa
+    {
+        public List<PSVirtualNetworkGatewayConnectionIkeSaMainModeSa> ikesas;
+
+        public PSVirtualNetworkGatewayConnectionIkeSa()
+        {
+            ikesas = new List<PSVirtualNetworkGatewayConnectionIkeSaMainModeSa>();
+        }
+    }
+
+    public class PSVirtualNetworkGatewayConnectionIkeSaMainModeSa
+    {
+        [Ps1Xml(Target = ViewControl.Table)]
+        public string localEndpoint { get; set; }
+
+        [Ps1Xml(Target = ViewControl.Table)]
+        public string remoteEndpoint { get; set; }
+
+        [Ps1Xml(Target = ViewControl.Table)]
+        public ulong initiatorCookie { get; set; }
+
+        [Ps1Xml(Target = ViewControl.Table)]
+        public ulong responderCookie { get; set; }
+
+        [Ps1Xml(Target = ViewControl.Table)]
+        public uint localUdpEncapsulationPort { get; set; }
+
+        [Ps1Xml(Target = ViewControl.Table)]
+        public uint remoteUdpEncapsulationPort { get; set; }
+
+        [Ps1Xml(Target = ViewControl.Table)]
+        public string encryption { get; set; }
+
+        [Ps1Xml(Target = ViewControl.Table)]
+        public string integrity { get; set; }
+
+        [Ps1Xml(Target = ViewControl.Table)]
+        public string dhGroup { get; set; }
+
+        [Ps1Xml(Target = ViewControl.Table)]
+        public uint lifeTimeSeconds { get; set; }
+
+        [Ps1Xml(Target = ViewControl.Table)]
+        public bool isSaInitiator { get; set; }
+
+        [Ps1Xml(Target = ViewControl.Table)]
+        public UInt32 elapsedTimeInseconds { get; set; }
+
+        public List<PSVirtualNetworkGatewayConnectionIkeSaQuickModeSa> quickModeSa { get; set; }
+
+        public PSVirtualNetworkGatewayConnectionIkeSaMainModeSa()
+        {
+            quickModeSa = new List<PSVirtualNetworkGatewayConnectionIkeSaQuickModeSa>();
+        }
+    }
+
+    public class PSVirtualNetworkGatewayConnectionIkeSaQuickModeSa
+    {
+        [Ps1Xml(Target = ViewControl.Table)]
+        public string localEndpoint { get; set; }
+
+        [Ps1Xml(Target = ViewControl.Table)]
+        public string remoteEndpoint { get; set; }
+
+        [Ps1Xml(Target = ViewControl.Table)]
+        public string encryption { get; set; }
+
+        [Ps1Xml(Target = ViewControl.Table)]
+        public string integrity { get; set; }
+
+        [Ps1Xml(Target = ViewControl.Table)]
+        public string pfsGroupId { get; set; }
+
+        [Ps1Xml(Target = ViewControl.Table)]
+        public uint inboundSPI { get; set; }
+
+        [Ps1Xml(Target = ViewControl.Table)]
+        public uint outboundSPI { get; set; }
+
+        [Ps1Xml(Target = ViewControl.Table)]
+        public List<string> localTrafficSelectors { get; set; }
+
+        [Ps1Xml(Target = ViewControl.Table)]
+        public List<string> remoteTrafficSelectors { get; set; }
+
+        [Ps1Xml(Target = ViewControl.Table)]
+        public ulong lifetimeKilobytes { get; set; }
+
+        [Ps1Xml(Target = ViewControl.Table)]
+        public ulong lifeTimeSeconds { get; set; }
+
+        [Ps1Xml(Target = ViewControl.Table)]
+        public bool isSaInitiator { get; set; }
+
+        [Ps1Xml(Target = ViewControl.Table)]
+        public UInt32 elapsedTimeInseconds { get; set; }
+
+        public PSVirtualNetworkGatewayConnectionIkeSaQuickModeSa()
+        {
+            localTrafficSelectors = new List<string>();
+            remoteTrafficSelectors = new List<string>();
+        }
+    }
+}

src/Network/Network/VirtualNetworkGatewayConnection/GetAzVirtualNetworkGatewayConnectionIkeSaCommand.cs

@@ -0,0 +1,90 @@
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+// http://www.apache.org/licenses/LICENSE-2.0
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+// ----------------------------------------------------------------------------------
+
+namespace Microsoft.Azure.Commands.Network
+{
+    using System.Management.Automation;
+    using Microsoft.Azure.Commands.Network.Models;
+    using Microsoft.Azure.Commands.ResourceManager.Common.ArgumentCompleters;
+    using Microsoft.Azure.Management.Internal.Resources.Utilities.Models;
+    using Microsoft.Azure.Management.Network.Models;
+
+    [Cmdlet("Get", ResourceManager.Common.AzureRMConstants.AzureRMPrefix + "VirtualNetworkGatewayConnectionIkeSa"), OutputType(typeof(PSVirtualNetworkGatewayConnectionIkeSa))]
+    public class GetAzVirtualNetworkGatewayConnectionIkeSaCommand : VirtualNetworkGatewayConnectionBaseCmdlet
+    {
+        [Alias("ResourceName", "ConnectionName")]
+        [Parameter(
+            ParameterSetName = "ByName",
+            Mandatory = false,
+            HelpMessage = "The virtual network gateway connection name for which IKE SAs needs to be fetched.")]
+        [ResourceNameCompleter("Microsoft.Network/connections", "ResourceGroupName")]
+        [ValidateNotNullOrEmpty]
+        public virtual string Name { get; set; }
+
+        [Parameter(
+            ParameterSetName = "ByName",
+            Mandatory = true,
+            ValueFromPipelineByPropertyName = true,
+            HelpMessage = "The resource group name.")]
+        [ResourceGroupCompleter]
+        [ValidateNotNullOrEmpty]
+        public virtual string ResourceGroupName { get; set; }
+
+        [Parameter(
+            ParameterSetName = "ByInputObject",
+            Mandatory = true,
+            HelpMessage = "The virtual network gateway connection object for which IKE SAs needs to be fetched.")]
+        [ValidateNotNullOrEmpty]
+        public PSVirtualNetworkGatewayConnection InputObject { get; set; }
+
+        [Parameter(
+            ParameterSetName = "ByResourceId",
+            HelpMessage = "The Azure resource ID of the Virtual Network Gateway Connection for which IKE SAs needs to be fetched.")]
+        [ValidateNotNullOrEmpty]
+        public string ResourceId { get; set; }
+
+        [Parameter(
+            Mandatory = false,
+            HelpMessage = "Run cmdlet in the background.")]
+        public SwitchParameter AsJob { get; set; }
+
+        public override void Execute()
+        {
+            if (ParameterSetName.Equals("ByInputObject"))
+            {
+                this.ResourceGroupName = this.InputObject.ResourceGroupName;
+                this.Name = this.InputObject.Name;
+            }
+            else
+            {
+                if (ParameterSetName.Equals("ByResourceId"))
+                {
+                    var parsedResourceId = new ResourceIdentifier(ResourceId);
+                    Name = parsedResourceId.ResourceName;
+                    ResourceGroupName = parsedResourceId.ResourceGroupName;
+                }
+            }
+
+            base.Execute();
+
+            if(this.IsVirtualNetworkGatewayConnectionPresent(this.ResourceGroupName, this.Name))
+            {
+                var result = this.GetVirtualNetworkGatewayConnectionIkeSa(this.ResourceGroupName, this.Name);
+                WriteObject(result.ikesas, true);
+
+            }
+            else
+            {
+                throw new PSArgumentException(Properties.Resources.ResourceNotFound, this.Name);
+            }
+        }
+    }
+}

src/Network/Network/VirtualNetworkGatewayConnection/VirtualNetworkGatewayConnectionBaseCmdlet.cs

@@ -18,6 +18,7 @@
 using Microsoft.Azure.Commands.ResourceManager.Common.Tags;
 using Microsoft.Azure.Management.Network;
 using Microsoft.Azure.Management.Network.Models;
+using Newtonsoft.Json;
 using System.Net;
 
 namespace Microsoft.Azure.Commands.Network
@@ -77,6 +78,19 @@ public string GetVirtualNetworkGatewayConnectionSharedKey(string resourceGroupNa
             return psVirtualNetworkGatewayConnectionSharedKey;
         }
 
+        public PSVirtualNetworkGatewayConnectionIkeSa GetVirtualNetworkGatewayConnectionIkeSa(string resourceGroupName, string name)
+        {
+            this.VirtualNetworkGatewayConnectionClient.GetIkeSas(resourceGroupName, name);
+
+            string response = this.VirtualNetworkGatewayConnectionClient.GetIkeSas(resourceGroupName, name);
+
+            WriteObject(response);
+
+            PSVirtualNetworkGatewayConnectionIkeSa result = JsonConvert.DeserializeObject<PSVirtualNetworkGatewayConnectionIkeSa>(response);
+
+            return result;
+        }
+
         public bool IsVirtualNetworkGatewayConnectionSharedKeyPresent(string resourceGroupName, string name)
         {
             try