08-28-2018 01:28 PM - edited 08-28-2018 01:31 PM
Hello Team,
I wanted to use a new API to create pxgrid consumer consuming MNT session data:
https://github.com/cisco-pxgrid/pxgrid-rest-ws/wiki/pxGrid-Consumer
I do not really understand this documentation: how to authenticate.
How exactly should i construct this header:
Authorization: Basic [nodeName]:[password if password-based authentication, otherwise empty string]
What is nodeName ? How should i get the password ? Should not the password be received as a result of AccountCreate call (while this is the first step at the same time) ? Chicken and egg problem ?
When trying to use basic http auth for admin or admin_ers (those are working fine for all other ERS API calls)
I do receive:
Password auth enabled in ISE/pxgrid.
Could you please help here ?
Thanks,
Michal
UPDATE: OK, got it solved, AccountCreate role does not require authentication and the header should not be attached at all, thanks !
Solved! Go to Solution.
08-29-2018 09:28 PM
Please note that the pxGrid API is totally different from ISE ERS API.
It says under the section "pxGrid account authentication",
...
Password-based authentication requires AccountCreate first to obtain a password, and then perform AccountActivate using the credentials obtained.
...
For example,
curl -X POST -k -H 'Content-Type: application/json' -H 'Accept: application/json' -i 'https://myISE:8910/pxgrid/control/AccountCreate' --data '{
"nodeName":"myTestNodeName1"
}'
08-29-2018 09:28 PM
Please note that the pxGrid API is totally different from ISE ERS API.
It says under the section "pxGrid account authentication",
...
Password-based authentication requires AccountCreate first to obtain a password, and then perform AccountActivate using the credentials obtained.
...
For example,
curl -X POST -k -H 'Content-Type: application/json' -H 'Accept: application/json' -i 'https://myISE:8910/pxgrid/control/AccountCreate' --data '{
"nodeName":"myTestNodeName1"
}'
11-28-2018 08:36 AM
I am trying to get this working for LiveAction in ISE 2.1. I am trying to do the AccountCreate function but I keep getting 401 Unauthorized error. The AccountCreate is not supposed to require authorization.
I have the following in Postman:
I am getting this back in the body of the response:
<body>
<h1>HTTP Status 401 - Full authentication is required to access this resource</h1>
<div class="line"></div>
<p>
<b>type</b> Status report
</p>
<p>
<b>message</b>
<u>Full authentication is required to access this resource</u>
</p>
<p>
<b>description</b>
<u>This request requires HTTP authentication.</u>
</p>
<hr class="line">
<h3></h3>
</body>
I have password based accounts creation enabled. What am I missing?
12-10-2018 07:30 AM
Hi Paul,
Yep, that is correct, no authentication, it looks perfectly fine, i have the same and it's working fine:
I do believe you might be using too old version of ISE (2.1) where that API was not yet really there, i remember to have some challenges in 2.3 - upgraded to 2.4 and have it working fine.
Cheers,
Michal
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide