Cisco ISE Automation

Overview

There are 2 APIs:

• External RESTful Services (ERS) API is designed to allow external clients to perform CRUD (Create, Read, Update, Delete) operations on Cisco ISE resources

• MNT REST API: The Monitoring REST API allows allow you to gather session and node-specific information by using Monitoring nodes in your network

Enabling API

• Administration > System > Settings and select API Settings

• Permission for REST API

• The MNT API uses different permissions. If you are going to do MNT and ERS you will need a group with both permissions

Reference

• https://developer.cisco.com/identity-services-engine/

• https://community.cisco.com/t5/security-knowledge-base/ise-ers-api-examples/ta-p/3622623

• External RESTFUL Service API: https://www.cisco.com/c/en/us/td/docs/security/ise/2-4/api_ref_guide/api_ref_book/ise_api_ref_ers1.html

• Cisco Identity Services Engine API Reference Guide, v1: https://developer.cisco.com/docs/identity-services-engine/v1/

• Introduction to the Monitoring REST API: https://developer.cisco.com/docs/identity-services-engine/v1/#!introduction-to-the-monitoring-rest-api/verifying-a-monitoring-node

• https://github.com/AdamGrossTX/CiscoISE/blob/main/External%20RESTful%20Service%20(ERS)%20API/WhiteList-ISEEndPoint.ps1

• ISE ERS API Examples: https://community.cisco.com/t5/security-knowledge-base/ise-ers-api-examples/ta-p/3622623#toc-hId--1523074356