cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
213
Views
1
Helpful
4
Replies

Endpoint profile purge by Network Device Name

fcs-lingle
Level 1
Level 1

Our guest VPN got hammered over the past month with rogue scanners and it took our endpoint count from 40k to almost 900k, purging by inactive hasn't seemed to help because it hasn't been that long.  All the ones I want to delete are showing up on our guest network firewall name under Network Device Name.   Is there a way to have the endpoint purge just purge all of the endpoints showing under a certain Network Device Name?

1 Accepted Solution

Accepted Solutions

Arne Bier
VIP
VIP

I can't see an option in the ISE GUI to select endpoints by the Network Device details. You can purge 500 at a time in Context Visibility ... although you'd be spending a lot of time doing that.  The usual answer will be REST API - get a list of all the endpoints you want to delete, and then delete them with a bulk API call. Easier said than done - I have never done this before, but it would be the only viable method.

View solution in original post

4 Replies 4

Arne Bier
VIP
VIP

I can't see an option in the ISE GUI to select endpoints by the Network Device details. You can purge 500 at a time in Context Visibility ... although you'd be spending a lot of time doing that.  The usual answer will be REST API - get a list of all the endpoints you want to delete, and then delete them with a bulk API call. Easier said than done - I have never done this before, but it would be the only viable method.

yeah, I figured that would be the answer, but was hoping maybe somebody knew something I wasn't seeing.  I'm not up to on all the REST automation stuff, so it looks like I will just slowly delete 500 at a time like I been doing.

I under check some topic of purge and as I know you can use NAD + identity group to purge specific endpoint from specific NAD

So let me double check I will update ypu

MHM

Thanks, I appreciate that.