Skip to content

cisco-ie/ise-policy-manager

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
 
 
 
 
 
 
 
 

Repository files navigation

ISE Policy Manager

ISE Policy Manager is a Python script Demo for Cisco ISE.

  • Export Policy Sets from Cisco ISE (new configuration is saved to git repo).
  • Show customer how the configuration has been saved and versioned.
  • Import Policy Sets to a previous configuration

Getting Started

These instructions will get you a copy of the project up and running on your local machine. See the deployment section below for notes on how to deploy the project on a live system.

Prerequisites

Appropriate access privileges to install Python packages and associated dependencies.

Installing

Create a github repository to store policy sets

First, you need to create a github repository using your account to store all policy sets for export condition. Creating new repository Choose a Repository name and check init README file. You will use this repository link for env variables in the next section (ISE_REPOSITORY). In order to upload (push) information to this repository, you have to create a personal access token Creating a personal access token

Clone cisco ise repository

When cloning a repository the .git can be left off the end.

$ git clone https://github.com/cisco-ie/ise-policy-manager.git
$ cd {git clone path}/ciscoise
$ docker-compose up -d

Create a new .env file

$ cd {git clone path}/ciscoise/app
$ touch .env

and include this variables

ISE_USERNAME="username"
ISE_PASSWORD="password"
ISE_BASE_URL="https://CISCO_ISE_IP_ADDRESS"
ISE_VERSION="3.1_Patch_1"
ISE_REPOSITORY="https://www.github.com/plencina/ise_repo_test.git"
GIT_USERNAME="git_username"
GIT_TOKEN="git_token"

or you can create local environment variables in your system. Use the export command to create the variables (only for linux or mac)

export ISE_USERNAME="username"
export ISE_PASSWORD="password"
export ISE_BASE_URL="https://CISCO_ISE_IP_ADDRESS"
export ISE_VERSION="3.1_Patch_1"
export ISE_REPOSITORY="https://www.github.com/pslencinas/test.git"
export GIT_USERNAME="git_username"
export GIT_TOKEN="git_token"

Usage

Precheck validation

# python ise-policy-mgr.py --precheck --target <hostnmae/IP>"

Save to git repo

# python ise-policy-mgr.py --export --target <hostnmae/IP> --comment "Comments about changes"

Deploy latest from git repo

# python ise-policy-mgr.py --import --target <hostnmae/IP>

Deploy rollback to previous version of configuration

# python ise-policy-mgr.py --import --target <hostnmae/IP> --rollback <commit_id>

Using local repository. You can use this args to work locally and not using a remote repository

# python ise-policy-mgr.py --export --target <hostnmae/IP> --localRepo

Support Information

Authors / Contributors

License

This project is covered under the terms described in LICENSE

About

No description, website, or topics provided.

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published