Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2065
Views
0
Helpful
3
Replies

REST API ACS vs ISE

Thomas Buergi
Level 1
Level 1

‎06-20-2013 03:44 AM - edited ‎02-21-2020 04:54 AM

Hi all

We are currently using ACS for wireless authentication. Guests register over an external Sharepoint webpage. The REST API is used to create and later delete these temporary users in ACS.

Now we want to migrate to ISE. In contrast to ACS, the ISE REST API seems to have no CRUD (Create, Read, Update and Delete) capabilities for Users. The ISE internal guest portal at the other hand we don't want to use.

Is there any other possibility to create Users in ISE from an external Application ?

Thanks Thomas

0 Helpful
3 Replies 3

DanielSpeck
Level 1
Level 1

‎10-24-2013 06:22 AM

Hi Thomas,  I have the same situation.  Did you ever find a resolution to this with ISE?

0 Helpful

Anas Naqvi
Level 1
Level 1

‎10-31-2013 05:49 PM

Hi Thomas,

Cisco  ISE allows you to view, create, modify, duplicate, delete, change the  status, import, export, or search for attributes of Cisco ISE users.

ISE also allows you to import user data in the form of a csv file into its  internal database. Instead of entering user accounts manually into Cisco  ISE, you can import them.

Following are the steps,

Step 1 Choose Administration > Identity Management > Identities > Users.

Step 2 Click Import to import users from a comma-delimited text file.

Tip (Optional) If you do not have a comma-delimited text file, click Generate a Template to create this type of file.

Step 3 In the File text box, enter the filename containing the users to import, or click Browse and navigate to the location where the file resides.

Step 4 Check the Create new user(s) and update existing user(s) with new data check boxes if you want to both create new users and update existing users.

Step 5 Click Save to save your changes to the Cisco ISE internal database.

http://www.cisco.com/en/US/docs/security/ise/1.2/user_guide/ise_man_id_stores.html#wp1407470

0 Helpful

Thomas Buergi
Level 1
Level 1
In response to Anas Naqvi

‎11-06-2013 04:02 AM

Hi Anas (& Daniel)

Actually I meant to create and delete Internal Users from outside the ISE GUI via REST API.

The use case is… that our external guest registration web platform is able to create and later delete  temporary guest users.

But yes the problem is now solved because ISE V1.2 introduced the capabilities to create, update and delete internal users via REST API.

http://www.cisco.com/en/US/docs/security/ise/1.2/api_ref_guide/ise_api_ref_ers2.html#wp1117446

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card