08-28-2018 01:28 PM - edited 08-28-2018 01:31 PM
Hello Team,
I wanted to use a new API to create pxgrid consumer consuming MNT session data:
https://github.com/cisco-pxgrid/pxgrid-rest-ws/wiki/pxGrid-Consumer
I do not really understand this documentation: how to authenticate.
How exactly should i construct this header:
Authorization: Basic [nodeName]:[password if password-based authentication, otherwise empty string]
What is nodeName ? How should i get the password ? Should not the password be received as a result of AccountCreate call (while this is the first step at the same time) ? Chicken and egg problem ?
When trying to use basic http auth for admin or admin_ers (those are working fine for all other ERS API calls)
I do receive:
Password auth enabled in ISE/pxgrid.
Could you please help here ?
Thanks,
Michal
UPDATE: OK, got it solved, AccountCreate role does not require authentication and the header should not be attached at all, thanks !
Solved! Go to Solution.
08-29-2018 09:28 PM
Please note that the pxGrid API is totally different from ISE ERS API.
It says under the section "pxGrid account authentication",
...
Password-based authentication requires AccountCreate first to obtain a password, and then perform AccountActivate using the credentials obtained.
...
For example,
curl -X POST -k -H 'Content-Type: application/json' -H 'Accept: application/json' -i 'https://myISE:8910/pxgrid/control/AccountCreate' --data '{
"nodeName":"myTestNodeName1"
}'
08-29-2018 09:28 PM
Please note that the pxGrid API is totally different from ISE ERS API.
It says under the section "pxGrid account authentication",
...
Password-based authentication requires AccountCreate first to obtain a password, and then perform AccountActivate using the credentials obtained.
...
For example,
curl -X POST -k -H 'Content-Type: application/json' -H 'Accept: application/json' -i 'https://myISE:8910/pxgrid/control/AccountCreate' --data '{
"nodeName":"myTestNodeName1"
}'
11-28-2018 08:36 AM
I am trying to get this working for LiveAction in ISE 2.1. I am trying to do the AccountCreate function but I keep getting 401 Unauthorized error. The AccountCreate is not supposed to require authorization.
I have the following in Postman:
I am getting this back in the body of the response:
<body>
<h1>HTTP Status 401 - Full authentication is required to access this resource</h1>
<div class="line"></div>
<p>
<b>type</b> Status report
</p>
<p>
<b>message</b>
<u>Full authentication is required to access this resource</u>
</p>
<p>
<b>description</b>
<u>This request requires HTTP authentication.</u>
</p>
<hr class="line">
<h3></h3>
</body>
I have password based accounts creation enabled. What am I missing?
12-10-2018 07:30 AM
Hi Paul,
Yep, that is correct, no authentication, it looks perfectly fine, i have the same and it's working fine:
I do believe you might be using too old version of ISE (2.1) where that API was not yet really there, i remember to have some challenges in 2.3 - upgraded to 2.4 and have it working fine.
Cheers,
Michal
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: