Solved: How can I delete multiple network devices at once using ISE Bulk API?

ringbmchoi · ‎03-23-2021

The network devices have been deleted one by one by using the API.

- https://x.x.x.x:9060/ers/config/networkdevice/{id}

Complete registration test of many network devices at once by using Bulk API.

What I want is to delete the network devices registered in ISE using Bulk API.

According to the API guide, other commands that are supported in large quantities are also available.

- API Documentation > Network Device > Overview (https://x.x.x.x:9060/ers/sdk#_?)

- The Bulk section is showing only 'create' bulk operation however, all other operation which are bulk supported can be used in same way.?

In the case of endpoints, you can delete many endpoints at once with the Bulk API.

- https://community.cisco.com/t5/network-access-control/how-to-execute-bulk-delete-operation-using-cisco-ise-api/m-p/3889761#M471519

<?xml version="1.0" encoding="utf-8" standalone="yes"?>
<ns4:endpointBulkRequest operationType="Delete" resourceMediaType="vnd.com.cisco.ise.identity.endpoint.1.0+xml" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:ns4="identity.ers.ise.cisco.com">
<idList>
<id>c7c05220-a682-11e9-92cd-024294667a96</id>
<id>c7c50d10-a682-11e9-92cd-024294667a96</id>
</idList>
</ns4:endpointBulkRequest>

Using the endpoint deletion sample Bulk API, I wrote a bulk API that deletes many network devices, but an error remains.

- Network Device Bulk API (Delete)

Method : DELETE

URL : https://xxx.xxx.xxx.xxx:9060/ers/config/networkdevice/bulk

<?xml version="1.0" encoding="UTF-8" standalone="yes"?>

<ns8:networkDeviceBulkRequest operationType="delete" resourceMediaType="vnd.com.cisco.ise.network.networkdevice.1.1+xml" xmlns:ns6="sxp.ers.ise.cisco.com" xmlns:ns5="trustsec.ers.ise.cisco.com" xmlns:ns8="network.ers.ise.cisco.com" xmlns:ns7="anc.ers.ise.cisco.com" xmlns:ers="ers.ise.cisco.com" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:ns4="identity.ers.ise.cisco.com">

<ns8:resourcesList>

</idList>

</ns8:resourcesList>

</ns8:networkDeviceBulkRequest>

Result - Status : 404 Not Found

<?xml version="1.0" encoding="utf-8" standalone="yes"?>

<ns3:ersResponse operation="DELETE-delete-networkdevice" xmlns:xs="http://www.w3.org/2001/XMLSchema" xmlns:ns3="ers.ise.cisco.com">

<title>The specified resource does not exist</title>

</message>

</messages>

</ns3:ersResponse>

Is it not possible to delete a network device using Bulk API?

Network devices don't support Bulk API?

How to delete a large number of Network Devices using Bulk API?

Mike.Cifelli · ‎03-23-2021

I suggest taking a peek at the online SDK if you have not already done so. <https://<pan ip>:9060/ers/sdk#>.

Network devices don't support Bulk APIs?

-AFAIK this is not supported as of 2.7. For bulk requests and network devices you can leverage the PUT operation to create several devices.

HTH!

View solution in original post

Mike.Cifelli · ‎03-23-2021

I suggest taking a peek at the online SDK if you have not already done so. <https://<pan ip>:9060/ers/sdk#>.

Network devices don't support Bulk APIs?

-AFAIK this is not supported as of 2.7. For bulk requests and network devices you can leverage the PUT operation to create several devices.

HTH!

thomas · ‎03-23-2021

Mike is correct.

See https://developer.cisco.com/docs/identity-services-engine/3.0/#!bulk-operations/sending-bulk-request which uses PUT then GET for status but not DELETE.

You will need to iterate over your list of IDs with

DELETE https://xxx.xxx.xxx.xxx:9060/ers/config/networkdevice/{id}

as shown at https://developer.cisco.com/docs/identity-services-engine/3.0/#!network-device/delete

rick.parsons · ‎06-01-2023

How quickly can we iterate through the list? I've tried sequentially and pausing at 30 seconds but both times our PSN's fell behind sync and the run time engine cause authentication outages. Thanks!