04-03-2023 07:36 AM
Hi !!
I want to ask if can we create conditions or policy rules using ERS,
if we don't, should I write a script python to do this via postman.
Solved! Go to Solution.
04-03-2023 07:54 AM
In ISE 3.1 the addition of Open API allows for Policy to be created/deleted/updated via API.
https://developer.cisco.com/docs/identity-services-engine/latest/#!versioning/versioning
04-03-2023 02:41 PM
All ISE APIs are documented @ https://cs.co/ise-api and in the ISE PAN node for ISE 3.1+ via the built-in Swagger UI utility.
CiscoISE on GitHub: https://github.com/CiscoISE
ciscoisesdk
Package | API Docs | Repositorycisco.ise
Modules | Documentation | Repositoryisegosdk
SDK | Documentation | Repository04-03-2023 05:07 PM
Just be aware that there is currently not full feature parity between the GUI and API. While you can use the API and IaC tools to configure some Policy elements, it is typically just a starting point. The remaining policy elements would need to be configured via the GUI.
04-03-2023 07:54 AM
In ISE 3.1 the addition of Open API allows for Policy to be created/deleted/updated via API.
https://developer.cisco.com/docs/identity-services-engine/latest/#!versioning/versioning
04-04-2023 02:50 AM
Thank you for your reply, I'm using 2.4.0.357, is it possible with it.
04-04-2023 04:29 AM
@chebbah, no, it is not possible with ISE 2.4.
Also, note that the version you are using reached Last Date of Support on December 26, 2022, so please consider upgrading to s supported version.
End of Life Announcement for the Cisco Identity Services Engine Software Version 2.4
04-04-2023 05:18 AM
Noted , Thank you
04-03-2023 02:41 PM
All ISE APIs are documented @ https://cs.co/ise-api and in the ISE PAN node for ISE 3.1+ via the built-in Swagger UI utility.
CiscoISE on GitHub: https://github.com/CiscoISE
ciscoisesdk
Package | API Docs | Repositorycisco.ise
Modules | Documentation | Repositoryisegosdk
SDK | Documentation | Repository12-03-2023 07:11 AM
Hi Thomas
it looks like ciscoisesdk runtime constatntly fails for python env >=3.12 with "ModuleNotFoundError: No module named 'imp'"
04-03-2023 02:48 PM
One of our Security Architects has done it with Ansible & Terraform:
04-03-2023 05:07 PM
Just be aware that there is currently not full feature parity between the GUI and API. While you can use the API and IaC tools to configure some Policy elements, it is typically just a starting point. The remaining policy elements would need to be configured via the GUI.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide