Skip to content
Network as Code

Condition

Location in GUI: Work Centers » Device Administration » Policy Elements » Conditions » Library Conditions

Diagram

Section titled “Diagram”
Diagram

Classes

Section titled “Classes”

policy_elements (ise.device_administration)

Section titled “policy_elements (ise.device_administration)”
NameTypeConstraintMandatoryDefault Value
conditionsList[conditions]No

conditions (ise.device_administration.policy_elements)

Section titled “conditions (ise.device_administration.policy_elements)”
NameTypeConstraintMandatoryDefault Value
nameStringRegex: ^[\w\d_\-\.]+$No
typeChoiceLibraryConditionAttributes, LibraryConditionAndBlock, LibraryConditionOrBlockYes
is_negateBooleantrue, falseNofalse
dictionary_nameStringNo
attribute_nameStringNo
operatorChoicecontains, endsWith, equals, greaterOrEquals, greaterThan, in, ipEquals, ipGreaterThan, ipLessThan, ipNotEquals, lessOrEquals, lessThan, matches, notContains, notEndsWith, notEquals, notIn, notStartsWith, startsWith, macContains, macEndsWith, macEquals, macIn, macNotContains, macNotEndsWith, macNotEquals, macNotIn, macNotStartsWith, macStartsWithNo
attribute_valueStringNo
descriptionStringNo
childrenList[children]No

children (ise.device_administration.policy_elements.conditions)

Section titled “children (ise.device_administration.policy_elements.conditions)”
NameTypeConstraintMandatoryDefault Value
nameStringRegex: ^[\w\d_\-\.]+$No
typeChoiceConditionReference, ConditionAttributes, ConditionAndBlock, ConditionOrBlockYes
is_negateBooleantrue, falseNo
dictionary_nameStringNo
attribute_nameStringNo
operatorChoicecontains, endsWith, equals, greaterOrEquals, greaterThan, in, ipEquals, ipGreaterThan, ipLessThan, ipNotEquals, lessOrEquals, lessThan, matches, notContains, notEndsWith, notEquals, notIn, notStartsWith, startsWith, macContains, macEndsWith, macEquals, macIn, macNotContains, macNotEndsWith, macNotEquals, macNotIn, macNotStartsWith, macStartsWithNo
attribute_valueStringNo
descriptionStringNo
childrenList[children]No

children (ise.device_administration.policy_elements.conditions.children)

Section titled “children (ise.device_administration.policy_elements.conditions.children)”
NameTypeConstraintMandatoryDefault Value
nameStringRegex: ^[\w\d_\-\.]+$No
typeChoiceConditionReference, ConditionAttributesYes
is_negateBooleantrue, falseNo
dictionary_nameStringNo
attribute_nameStringNo
operatorChoicecontains, endsWith, equals, greaterOrEquals, greaterThan, in, ipEquals, ipGreaterThan, ipLessThan, ipNotEquals, lessOrEquals, lessThan, matches, notContains, notEndsWith, notEquals, notIn, notStartsWith, startsWith, macContains, macEndsWith, macEquals, macIn, macNotContains, macNotEndsWith, macNotEquals, macNotIn, macNotStartsWith, macStartsWithNo
attribute_valueStringNo
descriptionStringNo

Examples

Section titled “Examples”
ise:
  device_administration:
    policy_elements:
      conditions:
        - name: CertificateNotExpired
          type: LibraryConditionAttributes
          is_negate: false
          dictionary_name: TACACS
          attribute_name: User
          operator: equals
          attribute_value: User1