ISE Policy Manager is a Python script Demo for Cisco ISE.
- Export Policy Sets from Cisco ISE (new configuration is saved to git repo).
- Show customer how the configuration has been saved and versioned.
- Import Policy Sets to a previous configuration
These instructions will get you a copy of the project up and running on your local machine. See the deployment section below for notes on how to deploy the project on a live system.
Appropriate access privileges to install Python packages and associated dependencies.
First, you need to create a github repository using your account to store all policy sets for export condition. Creating new repository Choose a Repository name and check init README file. You will use this repository link for env variables in the next section (ISE_REPOSITORY). In order to upload (push) information to this repository, you have to create a personal access token Creating a personal access token
When cloning a repository the .git
can be left off the end.
$ git clone https://github.com/cisco-ie/ise-policy-manager.git
$ cd {git clone path}/ciscoise
$ docker-compose up -d
Create a new .env file
$ cd {git clone path}/ciscoise/app
$ touch .env
and include this variables
ISE_USERNAME="username"
ISE_PASSWORD="password"
ISE_BASE_URL="https://CISCO_ISE_IP_ADDRESS"
ISE_VERSION="3.1_Patch_1"
ISE_REPOSITORY="https://www.github.com/plencina/ise_repo_test.git"
GIT_USERNAME="git_username"
GIT_TOKEN="git_token"
or you can create local environment variables in your system. Use the export command to create the variables (only for linux or mac)
export ISE_USERNAME="username"
export ISE_PASSWORD="password"
export ISE_BASE_URL="https://CISCO_ISE_IP_ADDRESS"
export ISE_VERSION="3.1_Patch_1"
export ISE_REPOSITORY="https://www.github.com/pslencinas/test.git"
export GIT_USERNAME="git_username"
export GIT_TOKEN="git_token"
# python ise-policy-mgr.py --precheck --target <hostnmae/IP>"
# python ise-policy-mgr.py --export --target <hostnmae/IP> --comment "Comments about changes"
# python ise-policy-mgr.py --import --target <hostnmae/IP>
# python ise-policy-mgr.py --import --target <hostnmae/IP> --rollback <commit_id>
# python ise-policy-mgr.py --export --target <hostnmae/IP> --localRepo
This project is covered under the terms described in LICENSE