Skip to content

Authorization Profile

Version:

Location in GUI: Work Centers » Network Access » Policy Elements » Results » Authorization Profiles

Diagram

Diagram

Classes

policy_elements (ise.network_access)

Name	Type	Constraint	Mandatory	Default Value
authorization_profiles	List	`[authorization_profiles]`	No

authorization_profiles (ise.network_access.policy_elements)

Name	Type	Constraint	Mandatory	Default Value
name	String	Regex: `^[\w\d_\-\. ]+$`	Yes
description	String		No
vlan_name_id	String		No
vlan_tag_id	Integer	min: `0`, max: `31`	No
web_redirection	Class	`[web_redirection]`	No
agentless_posture	Boolean	`true`, `false`	No	`false`
access_type	Choice	`ACCESS_ACCEPT`, `ACCESS_REJECT`	No	`ACCESS_ACCEPT`
profile_name	String		No
airespace_acl	String		No
airespace_ipv6_acl	String		No
acl	String		No
dacl_name	String		No
ipv6_dacl_name	String		No
auto_smart_port	String		No
interface_template	String		No
ipv6_acl_filter	String		No
avc_profile	String		No
asa_vpn	String		No
unique_identifier	String		No
track_movement	Boolean	`true`, `false`	No	`false`
service_template	Boolean	`true`, `false`	No	`false`
easywired_session_candidate	Boolean	`true`, `false`	No	`false`
voice_domain_permission	Boolean	`true`, `false`	No	`false`
neat	Boolean	`true`, `false`	No	`false`
web_auth	Boolean	`true`, `false`	No	`false`
mac_sec_policy	Choice	`MUST_SECURE`, `MUST_NOT_SECURE`, `SHOULD_SECURE`	No
reauthentication_connectivity	Choice	`DEFAULT`, `RADIUS_REQUEST`	No
reauthentication_timer	Integer	min: `1`, max: `65535`	No
advanced_attributes	List	`[advanced_attributes]`	No

web_redirection (ise.network_access.policy_elements.authorization_profiles)

Name	Type	Constraint	Mandatory	Default Value
type	Choice	`CentralizedWebAuth`, `HotSpot`, `NativeSupplicanProvisioning`, `ClientProvisioning`	No
acl	String		No
portal_name	String		No
static_ip_host_name_fqdn	String		No
display_certificates_renewal_messages	Boolean	`true`, `false`	No

advanced_attributes (ise.network_access.policy_elements.authorization_profiles)

Name	Type	Constraint	Mandatory	Default Value
name	String		Yes
value	String		Yes

Examples

ise:
  network_access:
    policy_elements:
      authorization_profiles:
        - name: PERMIT_vlan1
          description: "PERMIT_vlan1"
          access_type: "ACCESS_ACCEPT"
          track_movement: false
          agentless_posture: false
          service_template: false
          easywired_session_candidate: false
          profile_name: "Cisco"
          vlan_tag_id: 1
          vlan_name_id: VLAN1

Location in GUI: Work Centers » Network Access » Policy Elements » Results » Authorization Profiles

Diagram

Diagram

Classes

policy_elements (ise.network_access)

Name	Type	Constraint	Mandatory	Default Value
authorization_profiles	List	`[authorization_profiles]`	No

authorization_profiles (ise.network_access.policy_elements)

Name	Type	Constraint	Mandatory	Default Value
name	String	Regex: `^[\w\d_\-\. ]+$`	Yes
description	String		No
vlan_name_id	String		No
vlan_tag_id	Integer	min: `0`, max: `31`	No
web_redirection	Class	`[web_redirection]`	No
agentless_posture	Boolean	`true`, `false`	No	`false`
access_type	Choice	`ACCESS_ACCEPT`, `ACCESS_REJECT`	No	`ACCESS_ACCEPT`
profile_name	String		No
airespace_acl	String		No
airespace_ipv6_acl	String		No
acl	String		No
dacl_name	String		No
ipv6_dacl_name	String		No
auto_smart_port	String		No
interface_template	String		No
ipv6_acl_filter	String		No
avc_profile	String		No
asa_vpn	String		No
unique_identifier	String		No
track_movement	Boolean	`true`, `false`	No	`false`
service_template	Boolean	`true`, `false`	No	`false`
easywired_session_candidate	Boolean	`true`, `false`	No	`false`
voice_domain_permission	Boolean	`true`, `false`	No	`false`
neat	Boolean	`true`, `false`	No	`false`
web_auth	Boolean	`true`, `false`	No	`false`
mac_sec_policy	Choice	`MUST_SECURE`, `MUST_NOT_SECURE`, `SHOULD_SECURE`	No
reauthentication_connectivity	Choice	`DEFAULT`, `RADIUS_REQUEST`	No
reauthentication_timer	Integer	min: `1`, max: `65535`	No
advanced_attributes	List	`[advanced_attributes]`	No

web_redirection (ise.network_access.policy_elements.authorization_profiles)

Name	Type	Constraint	Mandatory	Default Value
type	Choice	`CentralizedWebAuth`, `HotSpot`, `NativeSupplicanProvisioning`, `ClientProvisioning`	No
acl	String		No
portal_name	String		No
static_ip_host_name_fqdn	String		No
display_certificates_renewal_messages	Boolean	`true`, `false`	No

advanced_attributes (ise.network_access.policy_elements.authorization_profiles)

Name	Type	Constraint	Mandatory	Default Value
name	String		Yes
value	String		Yes

Examples

ise:
  network_access:
    policy_elements:
      authorization_profiles:
        - name: PERMIT_vlan1
          description: "PERMIT_vlan1"
          access_type: "ACCESS_ACCEPT"
          track_movement: false
          agentless_posture: false
          service_template: false
          easywired_session_candidate: false
          profile_name: "Cisco"
          vlan_tag_id: 1
          vlan_name_id: VLAN1

Location in GUI: Work Centers » Network Access » Policy Elements » Results » Authorization Profiles

Diagram

Diagram

Classes

policy_elements (ise.network_access)

Name	Type	Constraint	Mandatory	Default Value
authorization_profiles	List	`[authorization_profiles]`	No

authorization_profiles (ise.network_access.policy_elements)

Name	Type	Constraint	Mandatory	Default Value
name	String	Regex: `^[\w\d_\-\. ]+$`	Yes
description	String		No
vlan_name_id	String		No
vlan_tag_id	Integer	min: `0`, max: `31`	No
web_redirection	Class	`[web_redirection]`	No
agentless_posture	Boolean	`true`, `false`	No	`false`
access_type	Choice	`ACCESS_ACCEPT`, `ACCESS_REJECT`	No	`ACCESS_ACCEPT`
profile_name	String		No
airespace_acl	String		No
airespace_ipv6_acl	String		No
acl	String		No
dacl_name	String		No
ipv6_dacl_name	String		No
auto_smart_port	String		No
interface_template	String		No
ipv6_acl_filter	String		No
avc_profile	String		No
asa_vpn	String		No
unique_identifier	String		No
track_movement	Boolean	`true`, `false`	No	`false`
service_template	Boolean	`true`, `false`	No	`false`
easywired_session_candidate	Boolean	`true`, `false`	No	`false`
voice_domain_permission	Boolean	`true`, `false`	No	`false`
neat	Boolean	`true`, `false`	No	`false`
web_auth	Boolean	`true`, `false`	No	`false`
mac_sec_policy	Choice	`MUST_SECURE`, `MUST_NOT_SECURE`, `SHOULD_SECURE`	No
reauthentication_connectivity	Choice	`DEFAULT`, `RADIUS_REQUEST`	No
reauthentication_timer	Integer	min: `1`, max: `65535`	No
advanced_attributes	List	`[advanced_attributes]`	No

web_redirection (ise.network_access.policy_elements.authorization_profiles)

Name	Type	Constraint	Mandatory	Default Value
type	Choice	`CentralizedWebAuth`, `HotSpot`, `NativeSupplicanProvisioning`, `ClientProvisioning`	No
acl	String		No
portal_name	String		No
static_ip_host_name_fqdn	String		No
display_certificates_renewal_messages	Boolean	`true`, `false`	No

advanced_attributes (ise.network_access.policy_elements.authorization_profiles)

Name	Type	Constraint	Mandatory	Default Value
name	String		Yes
value	String		Yes

Examples

ise:
  network_access:
    policy_elements:
      authorization_profiles:
        - name: PERMIT_vlan1
          description: "PERMIT_vlan1"
          access_type: "ACCESS_ACCEPT"
          track_movement: false
          agentless_posture: false
          service_template: false
          easywired_session_candidate: false
          profile_name: "Cisco"
          vlan_tag_id: 1
          vlan_name_id: VLAN1

Location in GUI: Work Centers » Network Access » Policy Elements » Results » Authorization Profiles

Diagram

Diagram

Classes

policy_elements (ise.network_access)

Name	Type	Constraint	Mandatory	Default Value
authorization_profiles	List	`[authorization_profiles]`	No

authorization_profiles (ise.network_access.policy_elements)

Name	Type	Constraint	Mandatory	Default Value
name	String	Regex: `^[\w\d_\-\. ]+$`	Yes
description	String		No
vlan_name_id	String		No
vlan_tag_id	Integer	min: `0`, max: `31`	No
web_redirection	Class	`[web_redirection]`	No
agentless_posture	Boolean	`true`, `false`	No	`false`
access_type	Choice	`ACCESS_ACCEPT`, `ACCESS_REJECT`	No	`ACCESS_ACCEPT`
profile_name	String		No
airespace_acl	String		No
airespace_ipv6_acl	String		No
acl	String		No
dacl_name	String		No
ipv6_dacl_name	String		No
auto_smart_port	String		No
interface_template	String		No
ipv6_acl_filter	String		No
avc_profile	String		No
asa_vpn	String		No
unique_identifier	String		No
track_movement	Boolean	`true`, `false`	No	`false`
service_template	Boolean	`true`, `false`	No	`false`
easywired_session_candidate	Boolean	`true`, `false`	No	`false`
voice_domain_permission	Boolean	`true`, `false`	No	`false`
neat	Boolean	`true`, `false`	No	`false`
web_auth	Boolean	`true`, `false`	No	`false`
mac_sec_policy	Choice	`MUST_SECURE`, `MUST_NOT_SECURE`, `SHOULD_SECURE`	No
reauthentication_connectivity	Choice	`DEFAULT`, `RADIUS_REQUEST`	No
reauthentication_timer	Integer	min: `1`, max: `65535`	No
advanced_attributes	List	`[advanced_attributes]`	No

web_redirection (ise.network_access.policy_elements.authorization_profiles)

Name	Type	Constraint	Mandatory	Default Value
type	Choice	`CentralizedWebAuth`, `HotSpot`, `NativeSupplicanProvisioning`, `ClientProvisioning`	No
acl	String		No
portal_name	String		No
static_ip_host_name_fqdn	String		No
display_certificates_renewal_messages	Boolean	`true`, `false`	No

advanced_attributes (ise.network_access.policy_elements.authorization_profiles)

Name	Type	Constraint	Mandatory	Default Value
name	String		Yes
value	String		Yes

Examples

ise:
  network_access:
    policy_elements:
      authorization_profiles:
        - name: PERMIT_vlan1
          description: "PERMIT_vlan1"
          access_type: "ACCESS_ACCEPT"
          track_movement: false
          agentless_posture: false
          service_template: false
          easywired_session_candidate: false
          profile_name: "Cisco"
          vlan_tag_id: 1
          vlan_name_id: VLAN1