https://community.cisco.com/t5/network-access-control/terminate-a-vpn-session-using-cisco-identity-services-engine-api/m-p/5258072#M594829 <P>Hello, we have a web app used by our service desk to disable a compromised account, for example when a user clicks a phishing link.</P><P>&nbsp;</P><P>I have been tasked with making this web app also "kick the user from the VPN". I am not a Cisco expert but they throw <A href="https://developer.cisco.com/docs/identity-services-engine/latest/endpoint/" target="_self">these docs</A> at me and gave me a Username and API Key and I have been able to use Postman to make API calls successfully but I do not know what to call.</P><P>&nbsp;</P><P>Im essentially looking for a POST <A href="https://test.ise.our-website:9060/ise/vpn/session/endsession?samaccountname=bob" target="_blank">https://test.ise.our-website:9060/ise/vpn/session/endsession?samaccountname=bob</A>&nbsp;. Obviously that endpoint is not real, but that is essentially what I need.</P><P>&nbsp;</P><P>Any help would be appreciated.</P> Fri, 07 Feb 2025 16:52:08 GMT CiscoNewb001 2025-02-07T16:52:08Z https://community.cisco.com/t5/network-access-control/terminate-a-vpn-session-using-cisco-identity-services-engine-api/m-p/5258072#M594829 <P>Hello, we have a web app used by our service desk to disable a compromised account, for example when a user clicks a phishing link.</P><P>&nbsp;</P><P>I have been tasked with making this web app also "kick the user from the VPN". I am not a Cisco expert but they throw <A href="https://developer.cisco.com/docs/identity-services-engine/latest/endpoint/" target="_self">these docs</A> at me and gave me a Username and API Key and I have been able to use Postman to make API calls successfully but I do not know what to call.</P><P>&nbsp;</P><P>Im essentially looking for a POST <A href="https://test.ise.our-website:9060/ise/vpn/session/endsession?samaccountname=bob" target="_blank">https://test.ise.our-website:9060/ise/vpn/session/endsession?samaccountname=bob</A>&nbsp;. Obviously that endpoint is not real, but that is essentially what I need.</P><P>&nbsp;</P><P>Any help would be appreciated.</P> Fri, 07 Feb 2025 16:52:08 GMT https://community.cisco.com/t5/network-access-control/terminate-a-vpn-session-using-cisco-identity-services-engine-api/m-p/5258072#M594829 CiscoNewb001 2025-02-07T16:52:08Z https://community.cisco.com/t5/network-access-control/terminate-a-vpn-session-using-cisco-identity-services-engine-api/m-p/5258091#M594830 <P>Have a look at this section&nbsp;<A href="https://developer.cisco.com/docs/identity-services-engine/latest/get-user-by-id/" target="_blank" rel="noopener">https://developer.cisco.com/docs/identity-services-engine/latest/get-user-by-id/ </A>it shows how to get users, and then delete users. You can see the API endpoint and the details you need in these simple examples.</P> <P>It looks to be a GET to list the users and then delete to this URI with the user id.</P> <PRE>https://&lt;ise-ip-address&gt;:9060/ers/config/internaluser/&lt;user-id&gt;</PRE> <P>Doc link is here&nbsp;<A href="https://developer.cisco.com/docs/identity-services-engine/latest/internaluser/" target="_blank">https://developer.cisco.com/docs/identity-services-engine/latest/internaluser/</A></P> Fri, 07 Feb 2025 18:26:40 GMT https://community.cisco.com/t5/network-access-control/terminate-a-vpn-session-using-cisco-identity-services-engine-api/m-p/5258091#M594830 bigevilbeard 2025-02-07T18:26:40Z