Skip to content
Network as Code

AAEP

Location in GUI: Fabric » Access Policies » Policies » Global » Attachable Access Entity Profiles

If infra_vlan is enabled, the infrastructure VLAN ID must be configured under access_policies.

apic:
  access_policies:
    infra_vlan: 10

Diagram

Section titled “Diagram”
Diagram

Classes

Section titled “Classes”

access_policies (apic)

Section titled “access_policies (apic)”
NameTypeConstraintMandatoryDefault Value
aaepsList[aaeps]No

aaeps (apic.access_policies)

Section titled “aaeps (apic.access_policies)”
NameTypeConstraintMandatoryDefault Value
nameStringRegex: ^[a-zA-Z0-9_.:-]{1,64}$Yes
descriptionStringRegex: ^[a-zA-Z0-9\\!#$%()*,-./:;@ _{|}~?&+]{1,128}$No
infra_vlanBooleantrue, falseNofalse
physical_domainsListString[Regex: ^[a-zA-Z0-9_.:-]{1,64}$]No
routed_domainsListString[Regex: ^[a-zA-Z0-9_.:-]{1,64}$]No
vmware_vmm_domainsListString[Regex: ^[a-zA-Z0-9_.:-]{1,64}$]No
endpoint_groupsList[endpoint_groups]No

endpoint_groups (apic.access_policies.aaeps)

Section titled “endpoint_groups (apic.access_policies.aaeps)”
NameTypeConstraintMandatoryDefault Value
tenantStringRegex: ^[a-zA-Z0-9_.:-]{1,64}$Yes
application_profileStringRegex: ^[a-zA-Z0-9_.:-]{1,64}$Yes
endpoint_groupStringRegex: ^[a-zA-Z0-9_.:-]{1,64}$Yes
vlanIntegermin: 1, max: 4096No
primary_vlanIntegermin: 1, max: 4096No
secondary_vlanIntegermin: 1, max: 4096No
modeChoiceregular, native, untaggedNoregular
deployment_immediacyChoiceimmediate, lazyNolazy

Examples

Section titled “Examples”

Simple example:

apic:
  access_policies:
    aaeps:
      - name: AAEP1
        physical_domains:
          - PHY1

Full example:

apic:
  access_policies:
    infra_vlan: 10
    aaeps:
      - name: AAEP1
        infra_vlan: true
        physical_domains:
          - PHY1
        routed_domains:
          - ROUTED1
        vmware_vmm_domains:
          - VMM1
        endpoint_groups:
          - tenant: ABC
            application_profile: AP1
            endpoint_group: EPG1
            vlan: 1234
            mode: untagged
            deployment_immediacy: immediate