cyoungusm / cisco-ise-utils
PHP library to work with Cisco ISE ERS
Requires
- php: >=7.1
- ext-curl: *
- guzzlehttp/guzzle: ^6.0
- psr/log: ^1.1
- spatie/guzzle-rate-limiter-middleware: ^1.0
Requires (Dev)
- phpunit/phpunit: ^4.8.35 || ^5.7 || ^6.4 || ^7.0
- wa72/simplelogger: ^1.0.0
- dev-master
- 1.0.9
- 1.0.8
- 1.0.7
- 1.0.6
- 1.0.5
- 1.0.4
- 1.0.3
- 1.0.2
- 1.0.1
- 1.0.0
- dev-rc-1.0.9
- dev-fr-0016-sslerrors
- dev-rc-1.0.8
- dev-br-0013-deletesfail2
- dev-fr-0014-guzzlelogging
- dev-br-0013-deletesfail
- dev-fr-0002-ratelimiting
- dev-fr-0012-php7mar
- dev-dist-minrollup
- dev-fr-0011-protocols
- dev-rc-1.0.6
- dev-rc-1.0.5
- dev-fr-0006-moretests01
- dev-rc-1.0.4
- dev-br-0010-readme
- dev-fr-0006-moretests00
- dev-rc-1.0.3
- dev-fr-0006-jsontestcases
- dev-br-0008-jsonslashes
- dev-fr-0004-bbpipeline
- dev-rc-1.0.2
- dev-rc-1.0.1
This package is auto-updated.
Last update: 2024-03-29 01:48:21 UTC
README
cisco-ise-utils
Cisco ISE Utils is a library for working with Cisco Identity Services Engine (ISE) via their External RESTful Services (ERS) API. Currently, it only supports JSON types (not XML) for the API.
For documentation on the ERS API, see:
https://developer.cisco.com/docs/identity-services-engine/
Currently Supported Functionality
As of version 1.0, the only supported resource types are EndPoints and EndPointGroups. Any contributions to add new resource types, unit tests, or refactoring would be greatly appreciated. The code is in a very early, rough state. Eventually, ISEUtils\ERSClient will need to be abstracted out to an interface and associated implementation, then DI injected into ISEUtils\Client. Test cases should be created, etc, etc.
Trying Things Out
To run through some basic tests with the library, perform the below setup and run sample scripts. This can help you determine if the code will work for your needs.
Copy sample-scripts/settings-default.php to sample-scripts/settings.php and edit the values for your environment. This includes the following settings.
- CISCO_ISE_HOST - The hostname or IP of your Cisco ISE installation
- CISCO_ISE_ERS_PORT - The TCP port to use when connecting (9060 by default)
- CISCO_ISE_ERS_USER - User name for the service account with appropriate ISE permissions
- CISCO_ISE_ERS_PASS - The associated password
- CISCO_ISE_ERS_PROTO - The transport protocol to use (https by default)
- CISCO_ISE_ERS_TXPERMIN - The number of ERS transacitons per minute (null/empty/0 indicates no limit)
- CISCO_ISE_ERS_TXPERCON - The number of ERS transacitons per connection (null/empty/0 indicates no limit)
- CISCO_ISE_ERS_VERIFYSSL - Whether to verify the ISE server's SSL certificate (false indicates no verification)
Run composer install to set up vendor directory with dependencies.
Run composer dump-autoload -o to set up class autoloading.
Run the scripts like:
php ./sample-scripts/load-testing-data.php
php ./sample-scripts/delete-testing-data.php
To run without having to install PHP, consider using a containerized version of PHP and composer. A sample Dockerfile is located under buildtools.
docker build -t buildtools ./buildtools
docker run -it --rm -v $PWD:/opt -w /opt buildtools composer install
docker run -it --rm -v $PWD:/opt -w /opt buildtools composer dump-autoload -o
docker run -it --rm -v $PWD:/opt -w /opt buildtools php ./sample-scripts/load-testing-data.php
Note: Also baked into buildtools is PHP_UML, which comes with the phpuml utility. You can generate UML XMI metadata from it, which can be used to create class diagrams, etc, with a tool like Umbrello.
docker run -it --init --rm -v $PWD:/opt -w /opt buildtools phpuml -o ./meta/ ./src
Using ISE Utils With Composer
To use the ISE Utils library in your PHP application using Composer, you can add it as a required package in your composer.json file.
"require": {
"cyoungusm/cisco-ise-utils": "1.0"
}
Running Test Cases
Run test cases like:
./vendor/phpunit/phpunit/phpunit ./tests
or
docker run -it --rm -v $PWD:/opt -w /opt buildtools ./vendor/phpunit/phpunit/phpunit ./tests