Cisco Identity Services Engine (ISE)
App Vendor: Cisco
App Category: Configuration Management database(CMDB)
Connector Version: 1.0.0
API Version: 1.0.0
Notice
This is a beta-app and the documentation is in progress.
About App
Cisco Identity Services Engine (ISE) is a next generation identity and access control policy platform. Cisco ISE enables a dynamic and automated approach to policy enforcement that simplifies the delivery of highly secure network access control. Cisco Identity Services Engine (ISE) app enables security teams to integrate with the enterprise version of Cisco Identity Services Engine (ISE) to manage policies, sessions, and endpoint access control.
The Cisco Identity Services Engine (ISE) app is configured with the Orchestrate application to perform the following actions:
Action Name | Description |
|---|---|
Assign Policy to Endpoint | This action assigns an adaptive network control policy to an endpoint. |
Get Active Session Details | This action retrieves a list of all active session details. |
Get Endpoint List | This action retrieves a list of existing endpoints. |
Get List of Groups | This action retrieves a list of endpoint identity groups. |
Fetch Policies List | This action retrieves a list of all adaptive network control policies. |
Get Blacklisted Endpoints | This action retrieves a list of blacklisted endpoints in a particular group. |
Get Endpoint Details | This action retrieves the details of an endpoint. |
Get Endpoint ID | This action retrieves an endpoint ID for a specific endpoint using the MAC address. |
Get Policy Details | This action retrieves the details of an adaptive network control policy. |
Get PSN by MAC Address | This action retrieves the Public Services Network (PSN) for an endpoint using the mac address. |
Re-authenticate Endpoint | This action re-authenticates an endpoint. |
Terminate Session | This action terminates a session using the device/host MAC address. |
Update Endpoint Group | This action updates the group of an endpoint. |
Configuration Parameters
The following configuration parameters are required for the Cisco Identity Services Engine (ISE) app to communicate with the Cisco Identity Services Engine (ISE) enterprise application. The parameters can be configured by creating instances in the app.
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
ISE Host Server | Enter the Cisco ISE host server IP address or domain name. Example: "sample Cisco host domain name" | Text | Required | |
Username | Enter the username for REST API authentication. Example: "sample username" | Text | Required | |
Password | Enter the password for REST API authentication. Example: "sample password" | Password | Required | |
SSL Verify | Optional preference to either verify or skip the SSL verification. Example: "True" | Text | Optional | Allowed values:
Default value: "False" |
Action: Assign Policy to Endpoint
This action assigns an adaptive network control policy to an endpoint.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Policy Name | Enter the policy name. Example: "policy1" | Text | Required | You can retrieve the policy name using the Fetch Policies List action. |
MAC Address | Enter the MAC address. Example: "00:11:22:33:44:55" | Text | Required |
Example Request
[
{
"policy_name": "policy1",
"mac_address": "00:11:22:33:44:55"
}
]Action: Get Active Session Details
This action retrieves a list of all active session details.
Action Input Parameters
This action does not require any input parameter.
Action: Get Endpoint List
This action retrieves a list of existing endpoints.
Action Input Parameters
This action does not require any input parameter.
Action: Get List of Groups
This action retrieves a list of endpoint identity groups.
Action Input Parameters
This action does not require any input parameter.
Action: Fetch Policies List
This action retrieves a list of all adaptive network control policies.
Action Input Parameters
This action does not require any input parameter.
Action: Get Blacklisted Endpoints
This action retrieves a list of blacklisted endpoints in a particular group.
Action Input Parameters
This action does not require any input parameter.
Action: Get Endpoint Details
This action retrieves the details of an endpoint.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Endpoint ID | Enter the endpoint ID. Example: "id1" | Text | Required | You can retrieve the Endpoint ID using the Get Endpoint ID action. |
Example Request
[
{
"endpoint_id": "id1"
}
]Action: Get Endpoint ID
This action retrieves an endpoint ID for a specific endpoint using the MAC address.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
MAC Address | Enter the MAC address. Example: "00:11:22:33:44:55" | Text | Required |
Example Request
[
{
"mac_address": "00:11:22:33:44:55"
}
]Action: Get Policy Details
This action retrieves the details of an adaptive network control policy.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Policy Name | Enter the policy name. Example: "policy1" | Text | Required | You can retrieve the policy name using the Fetch Policies List action. |
Example Request
[
{
"policy_name": "policy1"
}
]Action: Get PSN by MAC Address
This action retrieves the Public Services Network (PSN) for an endpoint using the mac address.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
MAC Address | Enter the MAC address. Example: "00:11:22:33:44:55" | Text | Required |
Example Request
[
{
"mac_address": "00:11:22:33:44:55"
}
]Action: Re-authenticate Endpoint
This action re-authenticates an endpoint.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
MAC Address | Enter the MAC address. Example: "00:11:22:33:44:55" | Text | Required | |
PSN Address | Enter the PSN address. Example: "sample psn address" | Text | Required | You can retrieve the PSN address using the Get PSN by MAC Address action. |
Example Request
[
{
"psn_address": "sample psn address",
"mac_address": "00:11:22:33:44:55"
}
]Action: Terminate Session
This action terminates a session using the device or host MAC address.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
MAC Address | Enter the device or host MAC address. Example: "00:11:22:33:44:55" | Text | Required |
Example Request
[
{
"mac_address": "00:11:22:33:44:55"
}
]Action: Update Endpoint Group
This action updates the group of an endpoint.
Action Input Parameters
Parameter | Description | Field Type | Required/Optional | Comments |
|---|---|---|---|---|
Endpoint ID | Enter the endpoint ID. Example: "id1" | Text | Required | You can retrieve the Endpoint ID using the Get Endpoint ID action. |
Group ID | Enter the group ID. Example: "sample group id" | Text | Required | You can retrieve the Group ID using the Get List of Groups action. |
Example Request
[
{
"endpoint_id": "id1",
"group_id": "sample group id"
}
]