Skip to content

Instantly share code, notes, and snippets.

@iwahbe

iwahbe/schema.json

Created June 6, 2024 23:18
Show Gist options
  • Save iwahbe/b6aa308f0ecdbdf9993f6babb3b4b402 to your computer and use it in GitHub Desktop.
Save iwahbe/b6aa308f0ecdbdf9993f6babb3b4b402 to your computer and use it in GitHub Desktop.
Download ZIP
A dynamically generated ise schema.json
Raw
schema.json
{
"name": "ise",
"version": "0.2.1",
"description": "A Pulumi provider dynamically bridged from ise.",
"attribution": "This Pulumi package is based on the [`ise` Terraform Provider](https://github.com/terraform-providers/terraform-provider-ise).",
"meta": {
"moduleFormat": "(.*)(?:/[^/]*)"
},
"language": {
"go": {
"importBasePath": "github.com/pulumi/pulumi-ise/sdk/go/ise",
"liftSingleValueMethodReturns": true,
"generateExtraInputTypes": true,
"respectSchemaVersion": true
},
"nodejs": {
"packageDescription": "A Pulumi provider dynamically bridged from ise.",
"readme": "\u003e This provider is a derived work of the [Terraform Provider](https://github.com/terraform-providers/terraform-provider-ise)\n\u003e distributed under [MPL 2.0](https://www.mozilla.org/en-US/MPL/2.0/). If you encounter a bug or missing feature,\n\u003e first check the [`pulumi-ise` repo](/issues); however, if that doesn't turn up anything,\n\u003e please consult the source [`terraform-provider-ise` repo](https://github.com/terraform-providers/terraform-provider-ise/issues).",
"compatibility": "tfbridge20",
"disableUnionOutputTypes": true
},
"python": {
"readme": "\u003e This provider is a derived work of the [Terraform Provider](https://github.com/terraform-providers/terraform-provider-ise)\n\u003e distributed under [MPL 2.0](https://www.mozilla.org/en-US/MPL/2.0/). If you encounter a bug or missing feature,\n\u003e first check the [`pulumi-ise` repo](/issues); however, if that doesn't turn up anything,\n\u003e please consult the source [`terraform-provider-ise` repo](https://github.com/terraform-providers/terraform-provider-ise/issues).",
"compatibility": "tfbridge20",
"pyproject": {}
}
},
"config": {
"variables": {
"insecure": {
"type": "boolean",
"description": "Allow insecure HTTPS client. This can also be set as the ISE_INSECURE environment variable. Defaults to `true`.\n"
},
"password": {
"type": "string",
"description": "Password for the ISE instance. This can also be set as the ISE_PASSWORD environment variable.\n",
"secret": true
},
"retries": {
"type": "number",
"description": "Number of retries for REST API calls. This can also be set as the ISE_RETRIES environment variable. Defaults to `3`.\n"
},
"url": {
"type": "string",
"description": "URL of the Cisco ISE instance. This can also be set as the ISE_URL environment variable.\n"
},
"username": {
"type": "string",
"description": "Username for the ISE instance. This can also be set as the ISE_USERNAME environment variable.\n"
}
}
},
"provider": {
"description": "The provider type for the ise package. By default, resources use package-wide configuration\nsettings, however an explicit `Provider` instance may be created and passed during resource\nconstruction to achieve fine-grained programmatic control over provider settings. See the\n[documentation](https://www.pulumi.com/docs/reference/programming-model/#providers) for more information.\n",
"properties": {
"password": {
"type": "string",
"description": "Password for the ISE instance. This can also be set as the ISE_PASSWORD environment variable.\n",
"secret": true
},
"url": {
"type": "string",
"description": "URL of the Cisco ISE instance. This can also be set as the ISE_URL environment variable.\n"
},
"username": {
"type": "string",
"description": "Username for the ISE instance. This can also be set as the ISE_USERNAME environment variable.\n"
}
},
"type": "object",
"inputProperties": {
"insecure": {
"type": "boolean",
"description": "Allow insecure HTTPS client. This can also be set as the ISE_INSECURE environment variable. Defaults to `true`.\n"
},
"password": {
"type": "string",
"description": "Password for the ISE instance. This can also be set as the ISE_PASSWORD environment variable.\n",
"secret": true
},
"retries": {
"type": "number",
"description": "Number of retries for REST API calls. This can also be set as the ISE_RETRIES environment variable. Defaults to `3`.\n"
},
"url": {
"type": "string",
"description": "URL of the Cisco ISE instance. This can also be set as the ISE_URL environment variable.\n"
},
"username": {
"type": "string",
"description": "Username for the ISE instance. This can also be set as the ISE_USERNAME environment variable.\n"
}
}
},
"resources": {
"ise:index/activeDirectoryAddGroups:ActiveDirectoryAddGroups": {
"properties": {
"adScopesNames": {
"type": "string",
"description": "String that contains the names of the scopes that the active directory belongs to. Names are separated by comm - Default\nvalue: `Default_Scope`\n"
},
"description": {
"type": "string",
"description": "Join point Description\n"
},
"domain": {
"type": "string",
"description": "AD domain associated with the join point\n"
},
"enableDomainAllowedList": {
"type": "boolean",
"description": "- Default value: `true`\n"
},
"groups": {
"type": "string",
"description": "List of AD Groups\n"
},
"joinPointId": {
"type": "string",
"description": "Active Directory Join Point ID\n"
},
"name": {
"type": "string",
"description": "The name of the active directory join point\n"
}
},
"type": "object",
"required": [
"adScopesNames",
"domain",
"enableDomainAllowedList",
"joinPointId",
"name"
],
"inputProperties": {
"adScopesNames": {
"type": "string",
"description": "String that contains the names of the scopes that the active directory belongs to. Names are separated by comm - Default\nvalue: `Default_Scope`\n"
},
"description": {
"type": "string",
"description": "Join point Description\n"
},
"domain": {
"type": "string",
"description": "AD domain associated with the join point\n"
},
"enableDomainAllowedList": {
"type": "boolean",
"description": "- Default value: `true`\n"
},
"groups": {
"type": "string",
"description": "List of AD Groups\n"
},
"joinPointId": {
"type": "string",
"description": "Active Directory Join Point ID\n"
},
"name": {
"type": "string",
"description": "The name of the active directory join point\n"
}
},
"requiredInputs": [
"domain",
"joinPointId"
],
"stateInputs": {
"description": "Input properties used for looking up and filtering ActiveDirectoryAddGroups resources.\n",
"properties": {
"adScopesNames": {
"type": "string",
"description": "String that contains the names of the scopes that the active directory belongs to. Names are separated by comm - Default\nvalue: `Default_Scope`\n"
},
"description": {
"type": "string",
"description": "Join point Description\n"
},
"domain": {
"type": "string",
"description": "AD domain associated with the join point\n"
},
"enableDomainAllowedList": {
"type": "boolean",
"description": "- Default value: `true`\n"
},
"groups": {
"type": "string",
"description": "List of AD Groups\n"
},
"joinPointId": {
"type": "string",
"description": "Active Directory Join Point ID\n"
},
"name": {
"type": "string",
"description": "The name of the active directory join point\n"
}
},
"type": "object"
}
},
"ise:index/activeDirectoryJoinDomainWithAllNodes:ActiveDirectoryJoinDomainWithAllNodes": {
"properties": {
"additionalData": {
"type": "string"
},
"joinPointId": {
"type": "string",
"description": "Active Directory Join Point ID\n"
}
},
"type": "object",
"required": [
"additionalData",
"joinPointId"
],
"inputProperties": {
"additionalData": {
"type": "string"
},
"joinPointId": {
"type": "string",
"description": "Active Directory Join Point ID\n"
}
},
"requiredInputs": [
"additionalData",
"joinPointId"
],
"stateInputs": {
"description": "Input properties used for looking up and filtering ActiveDirectoryJoinDomainWithAllNodes resources.\n",
"properties": {
"additionalData": {
"type": "string"
},
"joinPointId": {
"type": "string",
"description": "Active Directory Join Point ID\n"
}
},
"type": "object"
}
},
"ise:index/activeDirectoryJoinPoint:ActiveDirectoryJoinPoint": {
"properties": {
"adScopesNames": {
"type": "string",
"description": "String that contains the names of the scopes that the active directory belongs to. Names are separated by comma. -\nDefault value: `Default_Scope`\n"
},
"agingTime": {
"type": "number",
"description": "Aging Time - Default value: `5`\n"
},
"attributes": {
"type": "string",
"description": "List of AD attributes\n"
},
"authProtectionType": {
"type": "string",
"description": "Enable prevent AD account lockout for WIRELESS/WIRED/BOTH - Choices: `WIRELESS`, `WIRED`, `BOTH`\n"
},
"country": {
"type": "string",
"description": "User info attribute\n"
},
"department": {
"type": "string",
"description": "User info attribute\n"
},
"description": {
"type": "string",
"description": "Join point description\n"
},
"domain": {
"type": "string",
"description": "AD domain associated with the join point\n"
},
"email": {
"type": "string",
"description": "User info attribute\n"
},
"enableCallbackForDialinClient": {
"type": "boolean",
"description": "Enable Callback For Dial In Client - Default value: `false`\n"
},
"enableDialinPermissionCheck": {
"type": "boolean",
"description": "Enable Dial In Permission Check - Default value: `false`\n"
},
"enableDomainAllowedList": {
"type": "boolean",
"description": "- Default value: `true`\n"
},
"enableFailedAuthProtection": {
"type": "boolean",
"description": "Enable prevent AD account lockout due to too many bad password attempts - Default value: `false`\n"
},
"enableMachineAccess": {
"type": "boolean",
"description": "Enable Machine Access - Default value: `true`\n"
},
"enableMachineAuth": {
"type": "boolean",
"description": "Enable Machine Authentication - Default value: `true`\n"
},
"enablePassChange": {
"type": "boolean",
"description": "Enable Password Change - Default value: `true`\n"
},
"enableRewrites": {
"type": "boolean",
"description": "Enable Rewrites - Default value: `false`\n"
},
"failedAuthThreshold": {
"type": "number",
"description": "Number of bad password attempts - Default value: `5`\n"
},
"firstName": {
"type": "string",
"description": "User info attribute\n"
},
"groups": {
"type": "string",
"description": "List of AD Groups\n"
},
"identityNotInAdBehaviour": {
"type": "string",
"description": "Identity Not In AD Behaviour - Choices: `REJECT`, `SEARCH_JOINED_FOREST`, `SEARCH_ALL`\n"
},
"jobTitle": {
"type": "string",
"description": "User info attribute\n"
},
"lastName": {
"type": "string",
"description": "User info attribute\n"
},
"locality": {
"type": "string",
"description": "User info attribute\n"
},
"name": {
"type": "string",
"description": "The name of the active directory join point\n"
},
"organizationalUnit": {
"type": "string",
"description": "User info attribute\n"
},
"plaintextAuth": {
"type": "boolean",
"description": "Plain Text Authentication - Default value: `false`\n"
},
"rewriteRules": {
"type": "string",
"description": "List of Rewrite rules\n"
},
"schema": {
"type": "string",
"description": "Schema - Choices: `ACTIVE_DIRECTORY`, `CUSTOM`\n"
},
"stateOrProvince": {
"type": "string",
"description": "User info attribute\n"
},
"streetAddress": {
"type": "string",
"description": "User info attribute\n"
},
"telephone": {
"type": "string",
"description": "User info attribute\n"
},
"unreachableDomainsBehaviour": {
"type": "string",
"description": "Unreachable Domains Behaviour - Choices: `PROCEED`, `DROP`\n"
}
},
"type": "object",
"required": [
"adScopesNames",
"agingTime",
"domain",
"enableCallbackForDialinClient",
"enableDialinPermissionCheck",
"enableDomainAllowedList",
"enableFailedAuthProtection",
"enableMachineAccess",
"enableMachineAuth",
"enablePassChange",
"enableRewrites",
"failedAuthThreshold",
"name",
"plaintextAuth"
],
"inputProperties": {
"adScopesNames": {
"type": "string",
"description": "String that contains the names of the scopes that the active directory belongs to. Names are separated by comma. -\nDefault value: `Default_Scope`\n"
},
"agingTime": {
"type": "number",
"description": "Aging Time - Default value: `5`\n"
},
"attributes": {
"type": "string",
"description": "List of AD attributes\n"
},
"authProtectionType": {
"type": "string",
"description": "Enable prevent AD account lockout for WIRELESS/WIRED/BOTH - Choices: `WIRELESS`, `WIRED`, `BOTH`\n"
},
"country": {
"type": "string",
"description": "User info attribute\n"
},
"department": {
"type": "string",
"description": "User info attribute\n"
},
"description": {
"type": "string",
"description": "Join point description\n"
},
"domain": {
"type": "string",
"description": "AD domain associated with the join point\n"
},
"email": {
"type": "string",
"description": "User info attribute\n"
},
"enableCallbackForDialinClient": {
"type": "boolean",
"description": "Enable Callback For Dial In Client - Default value: `false`\n"
},
"enableDialinPermissionCheck": {
"type": "boolean",
"description": "Enable Dial In Permission Check - Default value: `false`\n"
},
"enableDomainAllowedList": {
"type": "boolean",
"description": "- Default value: `true`\n"
},
"enableFailedAuthProtection": {
"type": "boolean",
"description": "Enable prevent AD account lockout due to too many bad password attempts - Default value: `false`\n"
},
"enableMachineAccess": {
"type": "boolean",
"description": "Enable Machine Access - Default value: `true`\n"
},
"enableMachineAuth": {
"type": "boolean",
"description": "Enable Machine Authentication - Default value: `true`\n"
},
"enablePassChange": {
"type": "boolean",
"description": "Enable Password Change - Default value: `true`\n"
},
"enableRewrites": {
"type": "boolean",
"description": "Enable Rewrites - Default value: `false`\n"
},
"failedAuthThreshold": {
"type": "number",
"description": "Number of bad password attempts - Default value: `5`\n"
},
"firstName": {
"type": "string",
"description": "User info attribute\n"
},
"groups": {
"type": "string",
"description": "List of AD Groups\n"
},
"identityNotInAdBehaviour": {
"type": "string",
"description": "Identity Not In AD Behaviour - Choices: `REJECT`, `SEARCH_JOINED_FOREST`, `SEARCH_ALL`\n"
},
"jobTitle": {
"type": "string",
"description": "User info attribute\n"
},
"lastName": {
"type": "string",
"description": "User info attribute\n"
},
"locality": {
"type": "string",
"description": "User info attribute\n"
},
"name": {
"type": "string",
"description": "The name of the active directory join point\n"
},
"organizationalUnit": {
"type": "string",
"description": "User info attribute\n"
},
"plaintextAuth": {
"type": "boolean",
"description": "Plain Text Authentication - Default value: `false`\n"
},
"rewriteRules": {
"type": "string",
"description": "List of Rewrite rules\n"
},
"schema": {
"type": "string",
"description": "Schema - Choices: `ACTIVE_DIRECTORY`, `CUSTOM`\n"
},
"stateOrProvince": {
"type": "string",
"description": "User info attribute\n"
},
"streetAddress": {
"type": "string",
"description": "User info attribute\n"
},
"telephone": {
"type": "string",
"description": "User info attribute\n"
},
"unreachableDomainsBehaviour": {
"type": "string",
"description": "Unreachable Domains Behaviour - Choices: `PROCEED`, `DROP`\n"
}
},
"requiredInputs": [
"domain"
],
"stateInputs": {
"description": "Input properties used for looking up and filtering ActiveDirectoryJoinPoint resources.\n",
"properties": {
"adScopesNames": {
"type": "string",
"description": "String that contains the names of the scopes that the active directory belongs to. Names are separated by comma. -\nDefault value: `Default_Scope`\n"
},
"agingTime": {
"type": "number",
"description": "Aging Time - Default value: `5`\n"
},
"attributes": {
"type": "string",
"description": "List of AD attributes\n"
},
"authProtectionType": {
"type": "string",
"description": "Enable prevent AD account lockout for WIRELESS/WIRED/BOTH - Choices: `WIRELESS`, `WIRED`, `BOTH`\n"
},
"country": {
"type": "string",
"description": "User info attribute\n"
},
"department": {
"type": "string",
"description": "User info attribute\n"
},
"description": {
"type": "string",
"description": "Join point description\n"
},
"domain": {
"type": "string",
"description": "AD domain associated with the join point\n"
},
"email": {
"type": "string",
"description": "User info attribute\n"
},
"enableCallbackForDialinClient": {
"type": "boolean",
"description": "Enable Callback For Dial In Client - Default value: `false`\n"
},
"enableDialinPermissionCheck": {
"type": "boolean",
"description": "Enable Dial In Permission Check - Default value: `false`\n"
},
"enableDomainAllowedList": {
"type": "boolean",
"description": "- Default value: `true`\n"
},
"enableFailedAuthProtection": {
"type": "boolean",
"description": "Enable prevent AD account lockout due to too many bad password attempts - Default value: `false`\n"
},
"enableMachineAccess": {
"type": "boolean",
"description": "Enable Machine Access - Default value: `true`\n"
},
"enableMachineAuth": {
"type": "boolean",
"description": "Enable Machine Authentication - Default value: `true`\n"
},
"enablePassChange": {
"type": "boolean",
"description": "Enable Password Change - Default value: `true`\n"
},
"enableRewrites": {
"type": "boolean",
"description": "Enable Rewrites - Default value: `false`\n"
},
"failedAuthThreshold": {
"type": "number",
"description": "Number of bad password attempts - Default value: `5`\n"
},
"firstName": {
"type": "string",
"description": "User info attribute\n"
},
"groups": {
"type": "string",
"description": "List of AD Groups\n"
},
"identityNotInAdBehaviour": {
"type": "string",
"description": "Identity Not In AD Behaviour - Choices: `REJECT`, `SEARCH_JOINED_FOREST`, `SEARCH_ALL`\n"
},
"jobTitle": {
"type": "string",
"description": "User info attribute\n"
},
"lastName": {
"type": "string",
"description": "User info attribute\n"
},
"locality": {
"type": "string",
"description": "User info attribute\n"
},
"name": {
"type": "string",
"description": "The name of the active directory join point\n"
},
"organizationalUnit": {
"type": "string",
"description": "User info attribute\n"
},
"plaintextAuth": {
"type": "boolean",
"description": "Plain Text Authentication - Default value: `false`\n"
},
"rewriteRules": {
"type": "string",
"description": "List of Rewrite rules\n"
},
"schema": {
"type": "string",
"description": "Schema - Choices: `ACTIVE_DIRECTORY`, `CUSTOM`\n"
},
"stateOrProvince": {
"type": "string",
"description": "User info attribute\n"
},
"streetAddress": {
"type": "string",
"description": "User info attribute\n"
},
"telephone": {
"type": "string",
"description": "User info attribute\n"
},
"unreachableDomainsBehaviour": {
"type": "string",
"description": "Unreachable Domains Behaviour - Choices: `PROCEED`, `DROP`\n"
}
},
"type": "object"
}
},
"ise:index/allowedProtocols:AllowedProtocols": {
"properties": {
"allow5g": {
"type": "boolean",
"description": "Allow 5G. This field is only supported from ISE 3.2.\n"
},
"allowChap": {
"type": "boolean",
"description": "Allow CHAP\n"
},
"allowEapFast": {
"type": "boolean",
"description": "Allow EAP Fast\n"
},
"allowEapMd5": {
"type": "boolean",
"description": "Allow EAP MD5\n"
},
"allowEapTls": {
"type": "boolean",
"description": "Allow EAP TLS\n"
},
"allowEapTtls": {
"type": "boolean",
"description": "Allow EAP TTLS\n"
},
"allowLeap": {
"type": "boolean",
"description": "Allow LEAP\n"
},
"allowMsChapV1": {
"type": "boolean",
"description": "Allow MS CHAP v1\n"
},
"allowMsChapV2": {
"type": "boolean",
"description": "Allow MS CHAP v2\n"
},
"allowPapAscii": {
"type": "boolean",
"description": "Allow PAP ASCII\n"
},
"allowPeap": {
"type": "boolean",
"description": "Allow PEAP\n"
},
"allowPreferredEapProtocol": {
"type": "boolean",
"description": "Allow preferred EAP protocol\n"
},
"allowTeap": {
"type": "boolean",
"description": "Allow TEAP\n"
},
"allowWeakCiphersForEap": {
"type": "boolean",
"description": "Allow weak ciphers for EAP\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"eapFastAcceptClientCert": {
"type": "boolean",
"description": "Accept client certificates. Is required only if `eap_fast_use_pacs` is `false`.\n"
},
"eapFastAllowMachineAuthentication": {
"type": "boolean",
"description": "Allow machine authentication. Is required only if `eap_fast_use_pacs` is `false`.\n"
},
"eapFastEapGtc": {
"type": "boolean",
"description": "Allow EAP GTC\n"
},
"eapFastEapGtcPwdChange": {
"type": "boolean",
"description": "Allow EAP GTC password change. Is required only if `eap_fast_eap_gtc` is `true`.\n"
},
"eapFastEapGtcPwdChangeRetries": {
"type": "number",
"description": "EAP GTC password change retries. Is required only if `eap_fast_eap_gtc` is `true`. - Range: `0`-`3`\n"
},
"eapFastEapMsChapV2": {
"type": "boolean",
"description": "Allow EAP MS CHAP v2\n"
},
"eapFastEapMsChapV2PwdChange": {
"type": "boolean",
"description": "Allow EAP MS CHAP v2 password change. Is required only if `eap_fast_eap_ms_chap_v2` is `true`.\n"
},
"eapFastEapMsChapV2PwdChangeRetries": {
"type": "number",
"description": "EAP MS CHAP v2 password change retries. Is required only if `eap_fast_eap_ms_chap_v2` is `true`. - Range: `0`-`3`\n"
},
"eapFastEapTls": {
"type": "boolean",
"description": "Allow EAP TLS\n"
},
"eapFastEapTlsAuthOfExpiredCerts": {
"type": "boolean",
"description": "Allow EAP TLS authentication of expired certificates. Is required only if `eap_fast_eap_tls` is `true`.\n"
},
"eapFastEnableEapChaining": {
"type": "boolean",
"description": "Enable EAP chaining\n"
},
"eapFastPacsAllowAnonymousProvisioning": {
"type": "boolean",
"description": "Allow anonymous provisioning. Is required only if `eap_fast_use_pacs` is `true`.\n"
},
"eapFastPacsAllowAuthenticatedProvisioning": {
"type": "boolean",
"description": "Allow authenticated provisioning. Is required only if `eap_fast_use_pacs` is `true`.\n"
},
"eapFastPacsAllowClientCert": {
"type": "boolean",
"description": "Accept client certification for provisioning. Is required only if `eap_fast_pacs_allow_authenticated_provisioning` is\n`true`.\n"
},
"eapFastPacsAllowMachineAuthentication": {
"type": "boolean",
"description": "Allow machine authentication. Is required only if `eap_fast_use_pacs` is `true`.\n"
},
"eapFastPacsAuthorizationPacTtl": {
"type": "number",
"description": "Authorization PAC TTL. Is required only if `eap_fast_pacs_stateless_session_resume` is `true`.\n"
},
"eapFastPacsAuthorizationPacTtlUnit": {
"type": "string",
"description": "Authorization PAC TTL unit. Is required only if `eap_fast_pacs_stateless_session_resume` is `true`. - Choices:\n`SECONDS`, `MINUTES`, `HOURS`, `DAYS`, `WEEKS`\n"
},
"eapFastPacsMachinePacTtl": {
"type": "number",
"description": "Machine PAC TTL. Is required only if `eap_fast_pacs_allow_machine_authentication` is `true`.\n"
},
"eapFastPacsMachinePacTtlUnit": {
"type": "string",
"description": "Machine PAC TTL unit. Is required only if `eap_fast_pacs_allow_machine_authentication` is `true`. - Choices: `SECONDS`,\n`MINUTES`, `HOURS`, `DAYS`, `WEEKS`\n"
},
"eapFastPacsServerReturns": {
"type": "boolean",
"description": "Server returns access accept after authenticated provisioning. Is required only if\n`eap_fast_pacs_allow_authenticated_provisioning` is `true`.\n"
},
"eapFastPacsStatelessSessionResume": {
"type": "boolean",
"description": "Stateless session resume. Is required only if `eap_fast_use_pacs` is `true`.\n"
},
"eapFastPacsTunnelPacTtl": {
"type": "number",
"description": "PACs tunnel PAC time to live. Is required only if `eap_fast_use_pacs` is `true`.\n"
},
"eapFastPacsTunnelPacTtlUnit": {
"type": "string",
"description": "PACs tunnel PAC time to live unit. Is required only if `eap_fast_use_pacs` is `true`. - Choices: `SECONDS`, `MINUTES`,\n`HOURS`, `DAYS`, `WEEKS`\n"
},
"eapFastPacsUseProactivePacUpdatePercentage": {
"type": "number",
"description": "Use proactive pac update percentage. Is required only if `eap_fast_use_pacs` is `true`. - Range: `1`-`100`\n"
},
"eapFastUsePacs": {
"type": "boolean",
"description": "Use PACs\n"
},
"eapTlsAllowAuthOfExpiredCerts": {
"type": "boolean",
"description": "Allow authentication of expired certificates\n"
},
"eapTlsEnableStatelessSessionResume": {
"type": "boolean",
"description": "Enable stateless session resume\n"
},
"eapTlsLBit": {
"type": "boolean",
"description": "EAP TLS L-Bit\n"
},
"eapTlsSessionTicketPercentage": {
"type": "number",
"description": "Session ticket percentage. Is required only if `eap_tls_enable_stateless_session_resume` is `true`. - Range: `1`-`100`\n"
},
"eapTlsSessionTicketTtl": {
"type": "number",
"description": "Session ticket TTL. Is required only if `eap_tls_enable_stateless_session_resume` is `true`.\n"
},
"eapTlsSessionTicketTtlUnit": {
"type": "string",
"description": "Session ticket TTL unit. Is required only if `eap_tls_enable_stateless_session_resume` is `true`. - Choices: `SECONDS`,\n`MINUTES`, `HOURS`, `DAYS`, `WEEKS`\n"
},
"eapTtlsChap": {
"type": "boolean",
"description": "Allow CHAP\n"
},
"eapTtlsEapMd5": {
"type": "boolean",
"description": "Allow EAP MD5\n"
},
"eapTtlsEapMsChapV2": {
"type": "boolean",
"description": "Allow EAP MS CHAP v2\n"
},
"eapTtlsEapMsChapV2PwdChange": {
"type": "boolean",
"description": "Allow EAP MS CHAP v2 password change. Is required only if `eap_ttls_eap_ms_chap_v2` is `true`.\n"
},
"eapTtlsEapMsChapV2PwdChangeRetries": {
"type": "number",
"description": "EAP MS CHAP v2 password change retries. Is required only if `eap_ttls_eap_ms_chap_v2` is `true`. - Range: `0`-`3`\n"
},
"eapTtlsMsChapV1": {
"type": "boolean",
"description": "Allow MS CHAP v1\n"
},
"eapTtlsMsChapV2": {
"type": "boolean",
"description": "Allow MS CHAP v2\n"
},
"eapTtlsPapAscii": {
"type": "boolean",
"description": "Allow PAP ASCII\n"
},
"name": {
"type": "string",
"description": "The name of the allowed protocols\n"
},
"peapAllowPeapEapGtc": {
"type": "boolean",
"description": "Allow PEAP EAP GTC\n"
},
"peapAllowPeapEapGtcPwdChange": {
"type": "boolean",
"description": "Allow PEAP EAP GTC password change. Is required only if `allow_peap_eap_gtc` is `true`.\n"
},
"peapAllowPeapEapGtcPwdChangeRetries": {
"type": "number",
"description": "PEAP EAP GTC password change retries. Is required only if `allow_peap_eap_gtc` is `true`. - Range: `0`-`3`\n"
},
"peapAllowPeapEapMsChapV2": {
"type": "boolean",
"description": "Allow PEAP EAP MS CHAP v2\n"
},
"peapAllowPeapEapMsChapV2PwdChange": {
"type": "boolean",
"description": "Allow PEAP EAP MS CHAP v2 password change. Is required only if `allow_peap_eap_ms_chap_v2` is `true`.\n"
},
"peapAllowPeapEapMsChapV2PwdChangeRetries": {
"type": "number",
"description": "Allow PEAP EAP MS CHAP v2 password change retries. Is required only if `allow_peap_eap_ms_chap_v2` is `true`. - Range:\n`0`-`3`\n"
},
"peapAllowPeapEapTls": {
"type": "boolean",
"description": "Allow PEAP EAP TLS\n"
},
"peapAllowPeapEapTlsAuthOfExpiredCerts": {
"type": "boolean",
"description": "Allow PEAP EAP TLS authentication of expired certificates. Is required only if `peap_allow_peap_eap_tls` is `true`.\n"
},
"peapPeapV0": {
"type": "boolean",
"description": "Allow PEAP v0\n"
},
"preferredEapProtocol": {
"type": "string",
"description": "Preferred EAP protocol - Choices: `EAP_FAST`, `PEAP`, `LEAP`, `EAP_MD5`, `EAP_TLS`, `EAP_TTLS`, `TEAP`\n"
},
"processHostLookup": {
"type": "boolean",
"description": "Process host lookup\n"
},
"requireCryptobinding": {
"type": "boolean",
"description": "Require cryptobinding\n"
},
"requireMessageAuth": {
"type": "boolean",
"description": "Require message authentication\n"
},
"teapDowngradeMsk": {
"type": "boolean",
"description": "Allow downgrade to MSK\n"
},
"teapEapAcceptClientCertDuringTunnelEst": {
"type": "boolean",
"description": "Accept client certificate during tunnel establishment\n"
},
"teapEapChaining": {
"type": "boolean",
"description": "Allow EAP chaining\n"
},
"teapEapMsChapV2": {
"type": "boolean",
"description": "Allow EAP MS CHAP v2\n"
},
"teapEapMsChapV2PwdChange": {
"type": "boolean",
"description": "Allow EAP MS CHAP v2 password change. Is required only if `teap_eap_ms_chap_v2` is `true`.\n"
},
"teapEapMsChapV2PwdChangeRetries": {
"type": "number",
"description": "EAP MS CHAP v2 password change retries. Is required only if `teap_eap_ms_chap_v2` is `true`. - Range: `0`-`3`\n"
},
"teapEapTls": {
"type": "boolean",
"description": "Allow EAP TLS\n"
},
"teapEapTlsAuthOfExpiredCerts": {
"type": "boolean",
"description": "Allow EAP TLS authentication of expired certs. Is required only if `teap_eap_tls` is `true`.\n"
},
"teapRequestBasicPwdAuth": {
"type": "boolean",
"description": "Request basic password authentication\n"
}
},
"type": "object",
"required": [
"allowChap",
"allowEapFast",
"allowEapMd5",
"allowEapTls",
"allowEapTtls",
"allowLeap",
"allowMsChapV1",
"allowMsChapV2",
"allowPapAscii",
"allowPeap",
"allowPreferredEapProtocol",
"allowTeap",
"allowWeakCiphersForEap",
"eapTlsLBit",
"name",
"processHostLookup",
"requireMessageAuth"
],
"inputProperties": {
"allow5g": {
"type": "boolean",
"description": "Allow 5G. This field is only supported from ISE 3.2.\n"
},
"allowChap": {
"type": "boolean",
"description": "Allow CHAP\n"
},
"allowEapFast": {
"type": "boolean",
"description": "Allow EAP Fast\n"
},
"allowEapMd5": {
"type": "boolean",
"description": "Allow EAP MD5\n"
},
"allowEapTls": {
"type": "boolean",
"description": "Allow EAP TLS\n"
},
"allowEapTtls": {
"type": "boolean",
"description": "Allow EAP TTLS\n"
},
"allowLeap": {
"type": "boolean",
"description": "Allow LEAP\n"
},
"allowMsChapV1": {
"type": "boolean",
"description": "Allow MS CHAP v1\n"
},
"allowMsChapV2": {
"type": "boolean",
"description": "Allow MS CHAP v2\n"
},
"allowPapAscii": {
"type": "boolean",
"description": "Allow PAP ASCII\n"
},
"allowPeap": {
"type": "boolean",
"description": "Allow PEAP\n"
},
"allowPreferredEapProtocol": {
"type": "boolean",
"description": "Allow preferred EAP protocol\n"
},
"allowTeap": {
"type": "boolean",
"description": "Allow TEAP\n"
},
"allowWeakCiphersForEap": {
"type": "boolean",
"description": "Allow weak ciphers for EAP\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"eapFastAcceptClientCert": {
"type": "boolean",
"description": "Accept client certificates. Is required only if `eap_fast_use_pacs` is `false`.\n"
},
"eapFastAllowMachineAuthentication": {
"type": "boolean",
"description": "Allow machine authentication. Is required only if `eap_fast_use_pacs` is `false`.\n"
},
"eapFastEapGtc": {
"type": "boolean",
"description": "Allow EAP GTC\n"
},
"eapFastEapGtcPwdChange": {
"type": "boolean",
"description": "Allow EAP GTC password change. Is required only if `eap_fast_eap_gtc` is `true`.\n"
},
"eapFastEapGtcPwdChangeRetries": {
"type": "number",
"description": "EAP GTC password change retries. Is required only if `eap_fast_eap_gtc` is `true`. - Range: `0`-`3`\n"
},
"eapFastEapMsChapV2": {
"type": "boolean",
"description": "Allow EAP MS CHAP v2\n"
},
"eapFastEapMsChapV2PwdChange": {
"type": "boolean",
"description": "Allow EAP MS CHAP v2 password change. Is required only if `eap_fast_eap_ms_chap_v2` is `true`.\n"
},
"eapFastEapMsChapV2PwdChangeRetries": {
"type": "number",
"description": "EAP MS CHAP v2 password change retries. Is required only if `eap_fast_eap_ms_chap_v2` is `true`. - Range: `0`-`3`\n"
},
"eapFastEapTls": {
"type": "boolean",
"description": "Allow EAP TLS\n"
},
"eapFastEapTlsAuthOfExpiredCerts": {
"type": "boolean",
"description": "Allow EAP TLS authentication of expired certificates. Is required only if `eap_fast_eap_tls` is `true`.\n"
},
"eapFastEnableEapChaining": {
"type": "boolean",
"description": "Enable EAP chaining\n"
},
"eapFastPacsAllowAnonymousProvisioning": {
"type": "boolean",
"description": "Allow anonymous provisioning. Is required only if `eap_fast_use_pacs` is `true`.\n"
},
"eapFastPacsAllowAuthenticatedProvisioning": {
"type": "boolean",
"description": "Allow authenticated provisioning. Is required only if `eap_fast_use_pacs` is `true`.\n"
},
"eapFastPacsAllowClientCert": {
"type": "boolean",
"description": "Accept client certification for provisioning. Is required only if `eap_fast_pacs_allow_authenticated_provisioning` is\n`true`.\n"
},
"eapFastPacsAllowMachineAuthentication": {
"type": "boolean",
"description": "Allow machine authentication. Is required only if `eap_fast_use_pacs` is `true`.\n"
},
"eapFastPacsAuthorizationPacTtl": {
"type": "number",
"description": "Authorization PAC TTL. Is required only if `eap_fast_pacs_stateless_session_resume` is `true`.\n"
},
"eapFastPacsAuthorizationPacTtlUnit": {
"type": "string",
"description": "Authorization PAC TTL unit. Is required only if `eap_fast_pacs_stateless_session_resume` is `true`. - Choices:\n`SECONDS`, `MINUTES`, `HOURS`, `DAYS`, `WEEKS`\n"
},
"eapFastPacsMachinePacTtl": {
"type": "number",
"description": "Machine PAC TTL. Is required only if `eap_fast_pacs_allow_machine_authentication` is `true`.\n"
},
"eapFastPacsMachinePacTtlUnit": {
"type": "string",
"description": "Machine PAC TTL unit. Is required only if `eap_fast_pacs_allow_machine_authentication` is `true`. - Choices: `SECONDS`,\n`MINUTES`, `HOURS`, `DAYS`, `WEEKS`\n"
},
"eapFastPacsServerReturns": {
"type": "boolean",
"description": "Server returns access accept after authenticated provisioning. Is required only if\n`eap_fast_pacs_allow_authenticated_provisioning` is `true`.\n"
},
"eapFastPacsStatelessSessionResume": {
"type": "boolean",
"description": "Stateless session resume. Is required only if `eap_fast_use_pacs` is `true`.\n"
},
"eapFastPacsTunnelPacTtl": {
"type": "number",
"description": "PACs tunnel PAC time to live. Is required only if `eap_fast_use_pacs` is `true`.\n"
},
"eapFastPacsTunnelPacTtlUnit": {
"type": "string",
"description": "PACs tunnel PAC time to live unit. Is required only if `eap_fast_use_pacs` is `true`. - Choices: `SECONDS`, `MINUTES`,\n`HOURS`, `DAYS`, `WEEKS`\n"
},
"eapFastPacsUseProactivePacUpdatePercentage": {
"type": "number",
"description": "Use proactive pac update percentage. Is required only if `eap_fast_use_pacs` is `true`. - Range: `1`-`100`\n"
},
"eapFastUsePacs": {
"type": "boolean",
"description": "Use PACs\n"
},
"eapTlsAllowAuthOfExpiredCerts": {
"type": "boolean",
"description": "Allow authentication of expired certificates\n"
},
"eapTlsEnableStatelessSessionResume": {
"type": "boolean",
"description": "Enable stateless session resume\n"
},
"eapTlsLBit": {
"type": "boolean",
"description": "EAP TLS L-Bit\n"
},
"eapTlsSessionTicketPercentage": {
"type": "number",
"description": "Session ticket percentage. Is required only if `eap_tls_enable_stateless_session_resume` is `true`. - Range: `1`-`100`\n"
},
"eapTlsSessionTicketTtl": {
"type": "number",
"description": "Session ticket TTL. Is required only if `eap_tls_enable_stateless_session_resume` is `true`.\n"
},
"eapTlsSessionTicketTtlUnit": {
"type": "string",
"description": "Session ticket TTL unit. Is required only if `eap_tls_enable_stateless_session_resume` is `true`. - Choices: `SECONDS`,\n`MINUTES`, `HOURS`, `DAYS`, `WEEKS`\n"
},
"eapTtlsChap": {
"type": "boolean",
"description": "Allow CHAP\n"
},
"eapTtlsEapMd5": {
"type": "boolean",
"description": "Allow EAP MD5\n"
},
"eapTtlsEapMsChapV2": {
"type": "boolean",
"description": "Allow EAP MS CHAP v2\n"
},
"eapTtlsEapMsChapV2PwdChange": {
"type": "boolean",
"description": "Allow EAP MS CHAP v2 password change. Is required only if `eap_ttls_eap_ms_chap_v2` is `true`.\n"
},
"eapTtlsEapMsChapV2PwdChangeRetries": {
"type": "number",
"description": "EAP MS CHAP v2 password change retries. Is required only if `eap_ttls_eap_ms_chap_v2` is `true`. - Range: `0`-`3`\n"
},
"eapTtlsMsChapV1": {
"type": "boolean",
"description": "Allow MS CHAP v1\n"
},
"eapTtlsMsChapV2": {
"type": "boolean",
"description": "Allow MS CHAP v2\n"
},
"eapTtlsPapAscii": {
"type": "boolean",
"description": "Allow PAP ASCII\n"
},
"name": {
"type": "string",
"description": "The name of the allowed protocols\n"
},
"peapAllowPeapEapGtc": {
"type": "boolean",
"description": "Allow PEAP EAP GTC\n"
},
"peapAllowPeapEapGtcPwdChange": {
"type": "boolean",
"description": "Allow PEAP EAP GTC password change. Is required only if `allow_peap_eap_gtc` is `true`.\n"
},
"peapAllowPeapEapGtcPwdChangeRetries": {
"type": "number",
"description": "PEAP EAP GTC password change retries. Is required only if `allow_peap_eap_gtc` is `true`. - Range: `0`-`3`\n"
},
"peapAllowPeapEapMsChapV2": {
"type": "boolean",
"description": "Allow PEAP EAP MS CHAP v2\n"
},
"peapAllowPeapEapMsChapV2PwdChange": {
"type": "boolean",
"description": "Allow PEAP EAP MS CHAP v2 password change. Is required only if `allow_peap_eap_ms_chap_v2` is `true`.\n"
},
"peapAllowPeapEapMsChapV2PwdChangeRetries": {
"type": "number",
"description": "Allow PEAP EAP MS CHAP v2 password change retries. Is required only if `allow_peap_eap_ms_chap_v2` is `true`. - Range:\n`0`-`3`\n"
},
"peapAllowPeapEapTls": {
"type": "boolean",
"description": "Allow PEAP EAP TLS\n"
},
"peapAllowPeapEapTlsAuthOfExpiredCerts": {
"type": "boolean",
"description": "Allow PEAP EAP TLS authentication of expired certificates. Is required only if `peap_allow_peap_eap_tls` is `true`.\n"
},
"peapPeapV0": {
"type": "boolean",
"description": "Allow PEAP v0\n"
},
"preferredEapProtocol": {
"type": "string",
"description": "Preferred EAP protocol - Choices: `EAP_FAST`, `PEAP`, `LEAP`, `EAP_MD5`, `EAP_TLS`, `EAP_TTLS`, `TEAP`\n"
},
"processHostLookup": {
"type": "boolean",
"description": "Process host lookup\n"
},
"requireCryptobinding": {
"type": "boolean",
"description": "Require cryptobinding\n"
},
"requireMessageAuth": {
"type": "boolean",
"description": "Require message authentication\n"
},
"teapDowngradeMsk": {
"type": "boolean",
"description": "Allow downgrade to MSK\n"
},
"teapEapAcceptClientCertDuringTunnelEst": {
"type": "boolean",
"description": "Accept client certificate during tunnel establishment\n"
},
"teapEapChaining": {
"type": "boolean",
"description": "Allow EAP chaining\n"
},
"teapEapMsChapV2": {
"type": "boolean",
"description": "Allow EAP MS CHAP v2\n"
},
"teapEapMsChapV2PwdChange": {
"type": "boolean",
"description": "Allow EAP MS CHAP v2 password change. Is required only if `teap_eap_ms_chap_v2` is `true`.\n"
},
"teapEapMsChapV2PwdChangeRetries": {
"type": "number",
"description": "EAP MS CHAP v2 password change retries. Is required only if `teap_eap_ms_chap_v2` is `true`. - Range: `0`-`3`\n"
},
"teapEapTls": {
"type": "boolean",
"description": "Allow EAP TLS\n"
},
"teapEapTlsAuthOfExpiredCerts": {
"type": "boolean",
"description": "Allow EAP TLS authentication of expired certs. Is required only if `teap_eap_tls` is `true`.\n"
},
"teapRequestBasicPwdAuth": {
"type": "boolean",
"description": "Request basic password authentication\n"
}
},
"requiredInputs": [
"allowChap",
"allowEapFast",
"allowEapMd5",
"allowEapTls",
"allowEapTtls",
"allowLeap",
"allowMsChapV1",
"allowMsChapV2",
"allowPapAscii",
"allowPeap",
"allowPreferredEapProtocol",
"allowTeap",
"allowWeakCiphersForEap",
"eapTlsLBit",
"processHostLookup",
"requireMessageAuth"
],
"stateInputs": {
"description": "Input properties used for looking up and filtering AllowedProtocols resources.\n",
"properties": {
"allow5g": {
"type": "boolean",
"description": "Allow 5G. This field is only supported from ISE 3.2.\n"
},
"allowChap": {
"type": "boolean",
"description": "Allow CHAP\n"
},
"allowEapFast": {
"type": "boolean",
"description": "Allow EAP Fast\n"
},
"allowEapMd5": {
"type": "boolean",
"description": "Allow EAP MD5\n"
},
"allowEapTls": {
"type": "boolean",
"description": "Allow EAP TLS\n"
},
"allowEapTtls": {
"type": "boolean",
"description": "Allow EAP TTLS\n"
},
"allowLeap": {
"type": "boolean",
"description": "Allow LEAP\n"
},
"allowMsChapV1": {
"type": "boolean",
"description": "Allow MS CHAP v1\n"
},
"allowMsChapV2": {
"type": "boolean",
"description": "Allow MS CHAP v2\n"
},
"allowPapAscii": {
"type": "boolean",
"description": "Allow PAP ASCII\n"
},
"allowPeap": {
"type": "boolean",
"description": "Allow PEAP\n"
},
"allowPreferredEapProtocol": {
"type": "boolean",
"description": "Allow preferred EAP protocol\n"
},
"allowTeap": {
"type": "boolean",
"description": "Allow TEAP\n"
},
"allowWeakCiphersForEap": {
"type": "boolean",
"description": "Allow weak ciphers for EAP\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"eapFastAcceptClientCert": {
"type": "boolean",
"description": "Accept client certificates. Is required only if `eap_fast_use_pacs` is `false`.\n"
},
"eapFastAllowMachineAuthentication": {
"type": "boolean",
"description": "Allow machine authentication. Is required only if `eap_fast_use_pacs` is `false`.\n"
},
"eapFastEapGtc": {
"type": "boolean",
"description": "Allow EAP GTC\n"
},
"eapFastEapGtcPwdChange": {
"type": "boolean",
"description": "Allow EAP GTC password change. Is required only if `eap_fast_eap_gtc` is `true`.\n"
},
"eapFastEapGtcPwdChangeRetries": {
"type": "number",
"description": "EAP GTC password change retries. Is required only if `eap_fast_eap_gtc` is `true`. - Range: `0`-`3`\n"
},
"eapFastEapMsChapV2": {
"type": "boolean",
"description": "Allow EAP MS CHAP v2\n"
},
"eapFastEapMsChapV2PwdChange": {
"type": "boolean",
"description": "Allow EAP MS CHAP v2 password change. Is required only if `eap_fast_eap_ms_chap_v2` is `true`.\n"
},
"eapFastEapMsChapV2PwdChangeRetries": {
"type": "number",
"description": "EAP MS CHAP v2 password change retries. Is required only if `eap_fast_eap_ms_chap_v2` is `true`. - Range: `0`-`3`\n"
},
"eapFastEapTls": {
"type": "boolean",
"description": "Allow EAP TLS\n"
},
"eapFastEapTlsAuthOfExpiredCerts": {
"type": "boolean",
"description": "Allow EAP TLS authentication of expired certificates. Is required only if `eap_fast_eap_tls` is `true`.\n"
},
"eapFastEnableEapChaining": {
"type": "boolean",
"description": "Enable EAP chaining\n"
},
"eapFastPacsAllowAnonymousProvisioning": {
"type": "boolean",
"description": "Allow anonymous provisioning. Is required only if `eap_fast_use_pacs` is `true`.\n"
},
"eapFastPacsAllowAuthenticatedProvisioning": {
"type": "boolean",
"description": "Allow authenticated provisioning. Is required only if `eap_fast_use_pacs` is `true`.\n"
},
"eapFastPacsAllowClientCert": {
"type": "boolean",
"description": "Accept client certification for provisioning. Is required only if `eap_fast_pacs_allow_authenticated_provisioning` is\n`true`.\n"
},
"eapFastPacsAllowMachineAuthentication": {
"type": "boolean",
"description": "Allow machine authentication. Is required only if `eap_fast_use_pacs` is `true`.\n"
},
"eapFastPacsAuthorizationPacTtl": {
"type": "number",
"description": "Authorization PAC TTL. Is required only if `eap_fast_pacs_stateless_session_resume` is `true`.\n"
},
"eapFastPacsAuthorizationPacTtlUnit": {
"type": "string",
"description": "Authorization PAC TTL unit. Is required only if `eap_fast_pacs_stateless_session_resume` is `true`. - Choices:\n`SECONDS`, `MINUTES`, `HOURS`, `DAYS`, `WEEKS`\n"
},
"eapFastPacsMachinePacTtl": {
"type": "number",
"description": "Machine PAC TTL. Is required only if `eap_fast_pacs_allow_machine_authentication` is `true`.\n"
},
"eapFastPacsMachinePacTtlUnit": {
"type": "string",
"description": "Machine PAC TTL unit. Is required only if `eap_fast_pacs_allow_machine_authentication` is `true`. - Choices: `SECONDS`,\n`MINUTES`, `HOURS`, `DAYS`, `WEEKS`\n"
},
"eapFastPacsServerReturns": {
"type": "boolean",
"description": "Server returns access accept after authenticated provisioning. Is required only if\n`eap_fast_pacs_allow_authenticated_provisioning` is `true`.\n"
},
"eapFastPacsStatelessSessionResume": {
"type": "boolean",
"description": "Stateless session resume. Is required only if `eap_fast_use_pacs` is `true`.\n"
},
"eapFastPacsTunnelPacTtl": {
"type": "number",
"description": "PACs tunnel PAC time to live. Is required only if `eap_fast_use_pacs` is `true`.\n"
},
"eapFastPacsTunnelPacTtlUnit": {
"type": "string",
"description": "PACs tunnel PAC time to live unit. Is required only if `eap_fast_use_pacs` is `true`. - Choices: `SECONDS`, `MINUTES`,\n`HOURS`, `DAYS`, `WEEKS`\n"
},
"eapFastPacsUseProactivePacUpdatePercentage": {
"type": "number",
"description": "Use proactive pac update percentage. Is required only if `eap_fast_use_pacs` is `true`. - Range: `1`-`100`\n"
},
"eapFastUsePacs": {
"type": "boolean",
"description": "Use PACs\n"
},
"eapTlsAllowAuthOfExpiredCerts": {
"type": "boolean",
"description": "Allow authentication of expired certificates\n"
},
"eapTlsEnableStatelessSessionResume": {
"type": "boolean",
"description": "Enable stateless session resume\n"
},
"eapTlsLBit": {
"type": "boolean",
"description": "EAP TLS L-Bit\n"
},
"eapTlsSessionTicketPercentage": {
"type": "number",
"description": "Session ticket percentage. Is required only if `eap_tls_enable_stateless_session_resume` is `true`. - Range: `1`-`100`\n"
},
"eapTlsSessionTicketTtl": {
"type": "number",
"description": "Session ticket TTL. Is required only if `eap_tls_enable_stateless_session_resume` is `true`.\n"
},
"eapTlsSessionTicketTtlUnit": {
"type": "string",
"description": "Session ticket TTL unit. Is required only if `eap_tls_enable_stateless_session_resume` is `true`. - Choices: `SECONDS`,\n`MINUTES`, `HOURS`, `DAYS`, `WEEKS`\n"
},
"eapTtlsChap": {
"type": "boolean",
"description": "Allow CHAP\n"
},
"eapTtlsEapMd5": {
"type": "boolean",
"description": "Allow EAP MD5\n"
},
"eapTtlsEapMsChapV2": {
"type": "boolean",
"description": "Allow EAP MS CHAP v2\n"
},
"eapTtlsEapMsChapV2PwdChange": {
"type": "boolean",
"description": "Allow EAP MS CHAP v2 password change. Is required only if `eap_ttls_eap_ms_chap_v2` is `true`.\n"
},
"eapTtlsEapMsChapV2PwdChangeRetries": {
"type": "number",
"description": "EAP MS CHAP v2 password change retries. Is required only if `eap_ttls_eap_ms_chap_v2` is `true`. - Range: `0`-`3`\n"
},
"eapTtlsMsChapV1": {
"type": "boolean",
"description": "Allow MS CHAP v1\n"
},
"eapTtlsMsChapV2": {
"type": "boolean",
"description": "Allow MS CHAP v2\n"
},
"eapTtlsPapAscii": {
"type": "boolean",
"description": "Allow PAP ASCII\n"
},
"name": {
"type": "string",
"description": "The name of the allowed protocols\n"
},
"peapAllowPeapEapGtc": {
"type": "boolean",
"description": "Allow PEAP EAP GTC\n"
},
"peapAllowPeapEapGtcPwdChange": {
"type": "boolean",
"description": "Allow PEAP EAP GTC password change. Is required only if `allow_peap_eap_gtc` is `true`.\n"
},
"peapAllowPeapEapGtcPwdChangeRetries": {
"type": "number",
"description": "PEAP EAP GTC password change retries. Is required only if `allow_peap_eap_gtc` is `true`. - Range: `0`-`3`\n"
},
"peapAllowPeapEapMsChapV2": {
"type": "boolean",
"description": "Allow PEAP EAP MS CHAP v2\n"
},
"peapAllowPeapEapMsChapV2PwdChange": {
"type": "boolean",
"description": "Allow PEAP EAP MS CHAP v2 password change. Is required only if `allow_peap_eap_ms_chap_v2` is `true`.\n"
},
"peapAllowPeapEapMsChapV2PwdChangeRetries": {
"type": "number",
"description": "Allow PEAP EAP MS CHAP v2 password change retries. Is required only if `allow_peap_eap_ms_chap_v2` is `true`. - Range:\n`0`-`3`\n"
},
"peapAllowPeapEapTls": {
"type": "boolean",
"description": "Allow PEAP EAP TLS\n"
},
"peapAllowPeapEapTlsAuthOfExpiredCerts": {
"type": "boolean",
"description": "Allow PEAP EAP TLS authentication of expired certificates. Is required only if `peap_allow_peap_eap_tls` is `true`.\n"
},
"peapPeapV0": {
"type": "boolean",
"description": "Allow PEAP v0\n"
},
"preferredEapProtocol": {
"type": "string",
"description": "Preferred EAP protocol - Choices: `EAP_FAST`, `PEAP`, `LEAP`, `EAP_MD5`, `EAP_TLS`, `EAP_TTLS`, `TEAP`\n"
},
"processHostLookup": {
"type": "boolean",
"description": "Process host lookup\n"
},
"requireCryptobinding": {
"type": "boolean",
"description": "Require cryptobinding\n"
},
"requireMessageAuth": {
"type": "boolean",
"description": "Require message authentication\n"
},
"teapDowngradeMsk": {
"type": "boolean",
"description": "Allow downgrade to MSK\n"
},
"teapEapAcceptClientCertDuringTunnelEst": {
"type": "boolean",
"description": "Accept client certificate during tunnel establishment\n"
},
"teapEapChaining": {
"type": "boolean",
"description": "Allow EAP chaining\n"
},
"teapEapMsChapV2": {
"type": "boolean",
"description": "Allow EAP MS CHAP v2\n"
},
"teapEapMsChapV2PwdChange": {
"type": "boolean",
"description": "Allow EAP MS CHAP v2 password change. Is required only if `teap_eap_ms_chap_v2` is `true`.\n"
},
"teapEapMsChapV2PwdChangeRetries": {
"type": "number",
"description": "EAP MS CHAP v2 password change retries. Is required only if `teap_eap_ms_chap_v2` is `true`. - Range: `0`-`3`\n"
},
"teapEapTls": {
"type": "boolean",
"description": "Allow EAP TLS\n"
},
"teapEapTlsAuthOfExpiredCerts": {
"type": "boolean",
"description": "Allow EAP TLS authentication of expired certs. Is required only if `teap_eap_tls` is `true`.\n"
},
"teapRequestBasicPwdAuth": {
"type": "boolean",
"description": "Request basic password authentication\n"
}
},
"type": "object"
}
},
"ise:index/allowedProtocolsTacacs:AllowedProtocolsTacacs": {
"properties": {
"allowChap": {
"type": "boolean",
"description": "Allow CHAP\n"
},
"allowMsChapV1": {
"type": "boolean",
"description": "Allow MS CHAP v1\n"
},
"allowPapAscii": {
"type": "boolean",
"description": "Allow PAP ASCII\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"name": {
"type": "string",
"description": "The name of the allowed protocols\n"
}
},
"type": "object",
"required": [
"allowChap",
"allowMsChapV1",
"allowPapAscii",
"name"
],
"inputProperties": {
"allowChap": {
"type": "boolean",
"description": "Allow CHAP\n"
},
"allowMsChapV1": {
"type": "boolean",
"description": "Allow MS CHAP v1\n"
},
"allowPapAscii": {
"type": "boolean",
"description": "Allow PAP ASCII\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"name": {
"type": "string",
"description": "The name of the allowed protocols\n"
}
},
"requiredInputs": [
"allowChap",
"allowMsChapV1",
"allowPapAscii"
],
"stateInputs": {
"description": "Input properties used for looking up and filtering AllowedProtocolsTacacs resources.\n",
"properties": {
"allowChap": {
"type": "boolean",
"description": "Allow CHAP\n"
},
"allowMsChapV1": {
"type": "boolean",
"description": "Allow MS CHAP v1\n"
},
"allowPapAscii": {
"type": "boolean",
"description": "Allow PAP ASCII\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"name": {
"type": "string",
"description": "The name of the allowed protocols\n"
}
},
"type": "object"
}
},
"ise:index/authorizationProfile:AuthorizationProfile": {
"properties": {
"accessType": {
"type": "string",
"description": "Access type - Choices: `ACCESS_ACCEPT`, `ACCESS_REJECT` - Default value: `ACCESS_ACCEPT`\n"
},
"acl": {
"type": "string",
"description": "ACL\n"
},
"advancedAttributes": {
"type": "string",
"description": "List of advanced attributes\n"
},
"agentlessPosture": {
"type": "boolean",
"description": "Agentless Posture.\n"
},
"airespaceAcl": {
"type": "string",
"description": "Airespace ACL\n"
},
"airespaceIpv6Acl": {
"type": "string",
"description": "Airespace IPv6 ACL\n"
},
"asaVpn": {
"type": "string",
"description": "ASA VPN\n"
},
"autoSmartPort": {
"type": "string",
"description": "Auto smart port\n"
},
"avcProfile": {
"type": "string",
"description": "AVC profile\n"
},
"daclName": {
"type": "string",
"description": "DACL name\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"easywiredSessionCandidate": {
"type": "boolean",
"description": "Easy wired session candidate - Default value: `false`\n"
},
"interfaceTemplate": {
"type": "string",
"description": "Interface template\n"
},
"ipv6AclFilter": {
"type": "string",
"description": "IPv6 ACL\n"
},
"ipv6DaclName": {
"type": "string",
"description": "IPv6 DACL name\n"
},
"macSecPolicy": {
"type": "string",
"description": "MacSec policy - Choices: `MUST_SECURE`, `MUST_NOT_SECURE`, `SHOULD_SECURE`\n"
},
"name": {
"type": "string",
"description": "The name of the authorization profile\n"
},
"neat": {
"type": "boolean",
"description": "NEAT - Default value: `false`\n"
},
"profileName": {
"type": "string",
"description": "Value needs to be an existing Network Device Profile - Default value: `Cisco`\n"
},
"reauthenticationConnectivity": {
"type": "string",
"description": "Maintain Connectivity During Reauthentication - Choices: `DEFAULT`, `RADIUS_REQUEST`\n"
},
"reauthenticationTimer": {
"type": "number",
"description": "Reauthentication timer - Range: `1`-`65535`\n"
},
"serviceTemplate": {
"type": "boolean",
"description": "Service template - Default value: `false`\n"
},
"trackMovement": {
"type": "boolean",
"description": "Track movement - Default value: `false`\n"
},
"uniqueIdentifier": {
"type": "string",
"description": "Unique identifier\n"
},
"vlanNameId": {
"type": "string",
"description": "Vlan name or ID\n"
},
"vlanTagId": {
"type": "number",
"description": "Vlan tag ID - Range: `0`-`31`\n"
},
"voiceDomainPermission": {
"type": "boolean",
"description": "Voice domain permission - Default value: `false`\n"
},
"webAuth": {
"type": "boolean",
"description": "Web authentication (local) - Default value: `false`\n"
},
"webRedirectionAcl": {
"type": "string",
"description": "Web redirection ACL\n"
},
"webRedirectionDisplayCertificatesRenewalMessages": {
"type": "boolean",
"description": "This attribute is mandatory when `web_redirection_type` value is `CentralizedWebAuth`. For all other\n`web_redirection_type` values the field must be ignored.\n"
},
"webRedirectionPortalName": {
"type": "string",
"description": "A portal that exist in the DB and fits the `web_redirection_type`\n"
},
"webRedirectionStaticIpHostNameFqdn": {
"type": "string",
"description": "IP, hostname or FQDN\n"
},
"webRedirectionType": {
"type": "string",
"description": "This type must fit the `web_redirection_portal_name` - Choices: `CentralizedWebAuth`, `HotSpot`,\n`NativeSupplicanProvisioning`, `ClientProvisioning`\n"
}
},
"type": "object",
"required": [
"accessType",
"easywiredSessionCandidate",
"name",
"neat",
"profileName",
"serviceTemplate",
"trackMovement",
"voiceDomainPermission",
"webAuth"
],
"inputProperties": {
"accessType": {
"type": "string",
"description": "Access type - Choices: `ACCESS_ACCEPT`, `ACCESS_REJECT` - Default value: `ACCESS_ACCEPT`\n"
},
"acl": {
"type": "string",
"description": "ACL\n"
},
"advancedAttributes": {
"type": "string",
"description": "List of advanced attributes\n"
},
"agentlessPosture": {
"type": "boolean",
"description": "Agentless Posture.\n"
},
"airespaceAcl": {
"type": "string",
"description": "Airespace ACL\n"
},
"airespaceIpv6Acl": {
"type": "string",
"description": "Airespace IPv6 ACL\n"
},
"asaVpn": {
"type": "string",
"description": "ASA VPN\n"
},
"autoSmartPort": {
"type": "string",
"description": "Auto smart port\n"
},
"avcProfile": {
"type": "string",
"description": "AVC profile\n"
},
"daclName": {
"type": "string",
"description": "DACL name\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"easywiredSessionCandidate": {
"type": "boolean",
"description": "Easy wired session candidate - Default value: `false`\n"
},
"interfaceTemplate": {
"type": "string",
"description": "Interface template\n"
},
"ipv6AclFilter": {
"type": "string",
"description": "IPv6 ACL\n"
},
"ipv6DaclName": {
"type": "string",
"description": "IPv6 DACL name\n"
},
"macSecPolicy": {
"type": "string",
"description": "MacSec policy - Choices: `MUST_SECURE`, `MUST_NOT_SECURE`, `SHOULD_SECURE`\n"
},
"name": {
"type": "string",
"description": "The name of the authorization profile\n"
},
"neat": {
"type": "boolean",
"description": "NEAT - Default value: `false`\n"
},
"profileName": {
"type": "string",
"description": "Value needs to be an existing Network Device Profile - Default value: `Cisco`\n"
},
"reauthenticationConnectivity": {
"type": "string",
"description": "Maintain Connectivity During Reauthentication - Choices: `DEFAULT`, `RADIUS_REQUEST`\n"
},
"reauthenticationTimer": {
"type": "number",
"description": "Reauthentication timer - Range: `1`-`65535`\n"
},
"serviceTemplate": {
"type": "boolean",
"description": "Service template - Default value: `false`\n"
},
"trackMovement": {
"type": "boolean",
"description": "Track movement - Default value: `false`\n"
},
"uniqueIdentifier": {
"type": "string",
"description": "Unique identifier\n"
},
"vlanNameId": {
"type": "string",
"description": "Vlan name or ID\n"
},
"vlanTagId": {
"type": "number",
"description": "Vlan tag ID - Range: `0`-`31`\n"
},
"voiceDomainPermission": {
"type": "boolean",
"description": "Voice domain permission - Default value: `false`\n"
},
"webAuth": {
"type": "boolean",
"description": "Web authentication (local) - Default value: `false`\n"
},
"webRedirectionAcl": {
"type": "string",
"description": "Web redirection ACL\n"
},
"webRedirectionDisplayCertificatesRenewalMessages": {
"type": "boolean",
"description": "This attribute is mandatory when `web_redirection_type` value is `CentralizedWebAuth`. For all other\n`web_redirection_type` values the field must be ignored.\n"
},
"webRedirectionPortalName": {
"type": "string",
"description": "A portal that exist in the DB and fits the `web_redirection_type`\n"
},
"webRedirectionStaticIpHostNameFqdn": {
"type": "string",
"description": "IP, hostname or FQDN\n"
},
"webRedirectionType": {
"type": "string",
"description": "This type must fit the `web_redirection_portal_name` - Choices: `CentralizedWebAuth`, `HotSpot`,\n`NativeSupplicanProvisioning`, `ClientProvisioning`\n"
}
},
"stateInputs": {
"description": "Input properties used for looking up and filtering AuthorizationProfile resources.\n",
"properties": {
"accessType": {
"type": "string",
"description": "Access type - Choices: `ACCESS_ACCEPT`, `ACCESS_REJECT` - Default value: `ACCESS_ACCEPT`\n"
},
"acl": {
"type": "string",
"description": "ACL\n"
},
"advancedAttributes": {
"type": "string",
"description": "List of advanced attributes\n"
},
"agentlessPosture": {
"type": "boolean",
"description": "Agentless Posture.\n"
},
"airespaceAcl": {
"type": "string",
"description": "Airespace ACL\n"
},
"airespaceIpv6Acl": {
"type": "string",
"description": "Airespace IPv6 ACL\n"
},
"asaVpn": {
"type": "string",
"description": "ASA VPN\n"
},
"autoSmartPort": {
"type": "string",
"description": "Auto smart port\n"
},
"avcProfile": {
"type": "string",
"description": "AVC profile\n"
},
"daclName": {
"type": "string",
"description": "DACL name\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"easywiredSessionCandidate": {
"type": "boolean",
"description": "Easy wired session candidate - Default value: `false`\n"
},
"interfaceTemplate": {
"type": "string",
"description": "Interface template\n"
},
"ipv6AclFilter": {
"type": "string",
"description": "IPv6 ACL\n"
},
"ipv6DaclName": {
"type": "string",
"description": "IPv6 DACL name\n"
},
"macSecPolicy": {
"type": "string",
"description": "MacSec policy - Choices: `MUST_SECURE`, `MUST_NOT_SECURE`, `SHOULD_SECURE`\n"
},
"name": {
"type": "string",
"description": "The name of the authorization profile\n"
},
"neat": {
"type": "boolean",
"description": "NEAT - Default value: `false`\n"
},
"profileName": {
"type": "string",
"description": "Value needs to be an existing Network Device Profile - Default value: `Cisco`\n"
},
"reauthenticationConnectivity": {
"type": "string",
"description": "Maintain Connectivity During Reauthentication - Choices: `DEFAULT`, `RADIUS_REQUEST`\n"
},
"reauthenticationTimer": {
"type": "number",
"description": "Reauthentication timer - Range: `1`-`65535`\n"
},
"serviceTemplate": {
"type": "boolean",
"description": "Service template - Default value: `false`\n"
},
"trackMovement": {
"type": "boolean",
"description": "Track movement - Default value: `false`\n"
},
"uniqueIdentifier": {
"type": "string",
"description": "Unique identifier\n"
},
"vlanNameId": {
"type": "string",
"description": "Vlan name or ID\n"
},
"vlanTagId": {
"type": "number",
"description": "Vlan tag ID - Range: `0`-`31`\n"
},
"voiceDomainPermission": {
"type": "boolean",
"description": "Voice domain permission - Default value: `false`\n"
},
"webAuth": {
"type": "boolean",
"description": "Web authentication (local) - Default value: `false`\n"
},
"webRedirectionAcl": {
"type": "string",
"description": "Web redirection ACL\n"
},
"webRedirectionDisplayCertificatesRenewalMessages": {
"type": "boolean",
"description": "This attribute is mandatory when `web_redirection_type` value is `CentralizedWebAuth`. For all other\n`web_redirection_type` values the field must be ignored.\n"
},
"webRedirectionPortalName": {
"type": "string",
"description": "A portal that exist in the DB and fits the `web_redirection_type`\n"
},
"webRedirectionStaticIpHostNameFqdn": {
"type": "string",
"description": "IP, hostname or FQDN\n"
},
"webRedirectionType": {
"type": "string",
"description": "This type must fit the `web_redirection_portal_name` - Choices: `CentralizedWebAuth`, `HotSpot`,\n`NativeSupplicanProvisioning`, `ClientProvisioning`\n"
}
},
"type": "object"
}
},
"ise:index/certificateAuthenticationProfile:CertificateAuthenticationProfile": {
"properties": {
"allowedAsUserName": {
"type": "boolean",
"description": "Allow as username - Default value: `false`\n"
},
"certificateAttributeName": {
"type": "string",
"description": "Attribute name of the Certificate Profile - used only when CERTIFICATE is chosen in `username_from`. - Choices:\n`SUBJECT_COMMON_NAME`, `SUBJECT_ALTERNATIVE_NAME`, `SUBJECT_SERIAL_NUMBER`, `SUBJECT`,\n`SUBJECT_ALTERNATIVE_NAME_OTHER_NAME`, `SUBJECT_ALTERNATIVE_NAME_EMAIL`, `SUBJECT_ALTERNATIVE_NAME_DNS` - Default value:\n`SUBJECT_COMMON_NAME`\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"externalIdentityStoreName": {
"type": "string",
"description": "Referred IDStore name for the Certificate Profile or `[not applicable]` in case no identity store is chosen - Default\nvalue: `[not applicable]`\n"
},
"matchMode": {
"type": "string",
"description": "Match mode of the Certificate Profile. Allowed values: NEVER, RESOLVE_IDENTITY_AMBIGUITY, BINARY_COMPARISON - Choices:\n`NEVER`, `RESOLVE_IDENTITY_AMBIGUITY`, `BINARY_COMPARISON` - Default value: `NEVER`\n"
},
"name": {
"type": "string",
"description": "The name of the certificate profile\n"
},
"usernameFrom": {
"type": "string",
"description": "The attribute in the certificate where the user name should be taken from. Allowed values: `CERTIFICATE` (for a specific\nattribute as defined in certificateAttributeName), `UPN` (for using any Subject or Alternative Name Attributes in the\nCertificate - an option only in AD) - Choices: `CERTIFICATE`, `UPN` - Default value: `CERTIFICATE`\n"
}
},
"type": "object",
"required": [
"allowedAsUserName",
"certificateAttributeName",
"externalIdentityStoreName",
"matchMode",
"name",
"usernameFrom"
],
"inputProperties": {
"allowedAsUserName": {
"type": "boolean",
"description": "Allow as username - Default value: `false`\n"
},
"certificateAttributeName": {
"type": "string",
"description": "Attribute name of the Certificate Profile - used only when CERTIFICATE is chosen in `username_from`. - Choices:\n`SUBJECT_COMMON_NAME`, `SUBJECT_ALTERNATIVE_NAME`, `SUBJECT_SERIAL_NUMBER`, `SUBJECT`,\n`SUBJECT_ALTERNATIVE_NAME_OTHER_NAME`, `SUBJECT_ALTERNATIVE_NAME_EMAIL`, `SUBJECT_ALTERNATIVE_NAME_DNS` - Default value:\n`SUBJECT_COMMON_NAME`\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"externalIdentityStoreName": {
"type": "string",
"description": "Referred IDStore name for the Certificate Profile or `[not applicable]` in case no identity store is chosen - Default\nvalue: `[not applicable]`\n"
},
"matchMode": {
"type": "string",
"description": "Match mode of the Certificate Profile. Allowed values: NEVER, RESOLVE_IDENTITY_AMBIGUITY, BINARY_COMPARISON - Choices:\n`NEVER`, `RESOLVE_IDENTITY_AMBIGUITY`, `BINARY_COMPARISON` - Default value: `NEVER`\n"
},
"name": {
"type": "string",
"description": "The name of the certificate profile\n"
},
"usernameFrom": {
"type": "string",
"description": "The attribute in the certificate where the user name should be taken from. Allowed values: `CERTIFICATE` (for a specific\nattribute as defined in certificateAttributeName), `UPN` (for using any Subject or Alternative Name Attributes in the\nCertificate - an option only in AD) - Choices: `CERTIFICATE`, `UPN` - Default value: `CERTIFICATE`\n"
}
},
"stateInputs": {
"description": "Input properties used for looking up and filtering CertificateAuthenticationProfile resources.\n",
"properties": {
"allowedAsUserName": {
"type": "boolean",
"description": "Allow as username - Default value: `false`\n"
},
"certificateAttributeName": {
"type": "string",
"description": "Attribute name of the Certificate Profile - used only when CERTIFICATE is chosen in `username_from`. - Choices:\n`SUBJECT_COMMON_NAME`, `SUBJECT_ALTERNATIVE_NAME`, `SUBJECT_SERIAL_NUMBER`, `SUBJECT`,\n`SUBJECT_ALTERNATIVE_NAME_OTHER_NAME`, `SUBJECT_ALTERNATIVE_NAME_EMAIL`, `SUBJECT_ALTERNATIVE_NAME_DNS` - Default value:\n`SUBJECT_COMMON_NAME`\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"externalIdentityStoreName": {
"type": "string",
"description": "Referred IDStore name for the Certificate Profile or `[not applicable]` in case no identity store is chosen - Default\nvalue: `[not applicable]`\n"
},
"matchMode": {
"type": "string",
"description": "Match mode of the Certificate Profile. Allowed values: NEVER, RESOLVE_IDENTITY_AMBIGUITY, BINARY_COMPARISON - Choices:\n`NEVER`, `RESOLVE_IDENTITY_AMBIGUITY`, `BINARY_COMPARISON` - Default value: `NEVER`\n"
},
"name": {
"type": "string",
"description": "The name of the certificate profile\n"
},
"usernameFrom": {
"type": "string",
"description": "The attribute in the certificate where the user name should be taken from. Allowed values: `CERTIFICATE` (for a specific\nattribute as defined in certificateAttributeName), `UPN` (for using any Subject or Alternative Name Attributes in the\nCertificate - an option only in AD) - Choices: `CERTIFICATE`, `UPN` - Default value: `CERTIFICATE`\n"
}
},
"type": "object"
}
},
"ise:index/deviceAdminAuthenticationRule:DeviceAdminAuthenticationRule": {
"properties": {
"children": {
"type": "string",
"description": "List of child conditions. `condition_type` must be one of `ConditionAndBlock` or `ConditionOrBlock`.\n"
},
"conditionAttributeName": {
"type": "string",
"description": "Dictionary attribute name\n"
},
"conditionAttributeValue": {
"type": "string",
"description": "Attribute value for condition. Value type is specified in dictionary object.\n"
},
"conditionDictionaryName": {
"type": "string",
"description": "Dictionary name\n"
},
"conditionDictionaryValue": {
"type": "string",
"description": "Dictionary value\n"
},
"conditionId": {
"type": "string",
"description": "UUID for condition\n"
},
"conditionIsNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"conditionOperator": {
"type": "string",
"description": "Equality operator - Choices: `contains`, `endsWith`, `equals`, `greaterOrEquals`, `greaterThan`, `in`, `ipEquals`,\n`ipGreaterThan`, `ipLessThan`, `ipNotEquals`, `lessOrEquals`, `lessThan`, `matches`, `notContains`, `notEndsWith`,\n`notEquals`, `notIn`, `notStartsWith`, `startsWith`\n"
},
"conditionType": {
"type": "string",
"description": "Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that\nadditional conditions are present under the children attribute. - Choices: `ConditionAndBlock`, `ConditionAttributes`,\n`ConditionOrBlock`, `ConditionReference`\n"
},
"default": {
"type": "boolean",
"description": "Indicates if this rule is the default one\n"
},
"identitySourceName": {
"type": "string",
"description": "Identity source name from the identity stores\n"
},
"ifAuthFail": {
"type": "string",
"description": "Action to perform when authentication fails such as Bad credentials, disabled user and so on - Choices: `REJECT`,\n`DROP`, `CONTINUE`\n"
},
"ifProcessFail": {
"type": "string",
"description": "Action to perform when ISE is unable to access the identity database - Choices: `REJECT`, `DROP`, `CONTINUE`\n"
},
"ifUserNotFound": {
"type": "string",
"description": "Action to perform when user is not found in any of identity stores - Choices: `REJECT`, `DROP`, `CONTINUE`\n"
},
"name": {
"type": "string",
"description": "Rule name, [Valid characters are alphanumerics, underscore, hyphen, space, period, parentheses]\n"
},
"policySetId": {
"type": "string",
"description": "Policy set ID\n"
},
"rank": {
"type": "number",
"description": "The rank (priority) in relation to other rules. Lower rank is higher priority.\n"
},
"state": {
"type": "string",
"description": "The state that the rule is in. A disabled rule cannot be matched. - Choices: `disabled`, `enabled`, `monitor`\n"
}
},
"type": "object",
"required": [
"ifAuthFail",
"ifProcessFail",
"ifUserNotFound",
"name",
"policySetId"
],
"inputProperties": {
"children": {
"type": "string",
"description": "List of child conditions. `condition_type` must be one of `ConditionAndBlock` or `ConditionOrBlock`.\n"
},
"conditionAttributeName": {
"type": "string",
"description": "Dictionary attribute name\n"
},
"conditionAttributeValue": {
"type": "string",
"description": "Attribute value for condition. Value type is specified in dictionary object.\n"
},
"conditionDictionaryName": {
"type": "string",
"description": "Dictionary name\n"
},
"conditionDictionaryValue": {
"type": "string",
"description": "Dictionary value\n"
},
"conditionId": {
"type": "string",
"description": "UUID for condition\n"
},
"conditionIsNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"conditionOperator": {
"type": "string",
"description": "Equality operator - Choices: `contains`, `endsWith`, `equals`, `greaterOrEquals`, `greaterThan`, `in`, `ipEquals`,\n`ipGreaterThan`, `ipLessThan`, `ipNotEquals`, `lessOrEquals`, `lessThan`, `matches`, `notContains`, `notEndsWith`,\n`notEquals`, `notIn`, `notStartsWith`, `startsWith`\n"
},
"conditionType": {
"type": "string",
"description": "Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that\nadditional conditions are present under the children attribute. - Choices: `ConditionAndBlock`, `ConditionAttributes`,\n`ConditionOrBlock`, `ConditionReference`\n"
},
"default": {
"type": "boolean",
"description": "Indicates if this rule is the default one\n"
},
"identitySourceName": {
"type": "string",
"description": "Identity source name from the identity stores\n"
},
"ifAuthFail": {
"type": "string",
"description": "Action to perform when authentication fails such as Bad credentials, disabled user and so on - Choices: `REJECT`,\n`DROP`, `CONTINUE`\n"
},
"ifProcessFail": {
"type": "string",
"description": "Action to perform when ISE is unable to access the identity database - Choices: `REJECT`, `DROP`, `CONTINUE`\n"
},
"ifUserNotFound": {
"type": "string",
"description": "Action to perform when user is not found in any of identity stores - Choices: `REJECT`, `DROP`, `CONTINUE`\n"
},
"name": {
"type": "string",
"description": "Rule name, [Valid characters are alphanumerics, underscore, hyphen, space, period, parentheses]\n"
},
"policySetId": {
"type": "string",
"description": "Policy set ID\n"
},
"rank": {
"type": "number",
"description": "The rank (priority) in relation to other rules. Lower rank is higher priority.\n"
},
"state": {
"type": "string",
"description": "The state that the rule is in. A disabled rule cannot be matched. - Choices: `disabled`, `enabled`, `monitor`\n"
}
},
"requiredInputs": [
"ifAuthFail",
"ifProcessFail",
"ifUserNotFound",
"policySetId"
],
"stateInputs": {
"description": "Input properties used for looking up and filtering DeviceAdminAuthenticationRule resources.\n",
"properties": {
"children": {
"type": "string",
"description": "List of child conditions. `condition_type` must be one of `ConditionAndBlock` or `ConditionOrBlock`.\n"
},
"conditionAttributeName": {
"type": "string",
"description": "Dictionary attribute name\n"
},
"conditionAttributeValue": {
"type": "string",
"description": "Attribute value for condition. Value type is specified in dictionary object.\n"
},
"conditionDictionaryName": {
"type": "string",
"description": "Dictionary name\n"
},
"conditionDictionaryValue": {
"type": "string",
"description": "Dictionary value\n"
},
"conditionId": {
"type": "string",
"description": "UUID for condition\n"
},
"conditionIsNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"conditionOperator": {
"type": "string",
"description": "Equality operator - Choices: `contains`, `endsWith`, `equals`, `greaterOrEquals`, `greaterThan`, `in`, `ipEquals`,\n`ipGreaterThan`, `ipLessThan`, `ipNotEquals`, `lessOrEquals`, `lessThan`, `matches`, `notContains`, `notEndsWith`,\n`notEquals`, `notIn`, `notStartsWith`, `startsWith`\n"
},
"conditionType": {
"type": "string",
"description": "Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that\nadditional conditions are present under the children attribute. - Choices: `ConditionAndBlock`, `ConditionAttributes`,\n`ConditionOrBlock`, `ConditionReference`\n"
},
"default": {
"type": "boolean",
"description": "Indicates if this rule is the default one\n"
},
"identitySourceName": {
"type": "string",
"description": "Identity source name from the identity stores\n"
},
"ifAuthFail": {
"type": "string",
"description": "Action to perform when authentication fails such as Bad credentials, disabled user and so on - Choices: `REJECT`,\n`DROP`, `CONTINUE`\n"
},
"ifProcessFail": {
"type": "string",
"description": "Action to perform when ISE is unable to access the identity database - Choices: `REJECT`, `DROP`, `CONTINUE`\n"
},
"ifUserNotFound": {
"type": "string",
"description": "Action to perform when user is not found in any of identity stores - Choices: `REJECT`, `DROP`, `CONTINUE`\n"
},
"name": {
"type": "string",
"description": "Rule name, [Valid characters are alphanumerics, underscore, hyphen, space, period, parentheses]\n"
},
"policySetId": {
"type": "string",
"description": "Policy set ID\n"
},
"rank": {
"type": "number",
"description": "The rank (priority) in relation to other rules. Lower rank is higher priority.\n"
},
"state": {
"type": "string",
"description": "The state that the rule is in. A disabled rule cannot be matched. - Choices: `disabled`, `enabled`, `monitor`\n"
}
},
"type": "object"
}
},
"ise:index/deviceAdminAuthorizationExceptionRule:DeviceAdminAuthorizationExceptionRule": {
"properties": {
"children": {
"type": "string",
"description": "List of child conditions. `condition_type` must be one of `ConditionAndBlock` or `ConditionOrBlock`.\n"
},
"commandSets": {
"type": "array",
"items": {
"type": "string"
},
"description": "Command sets enforce the specified list of commands that can be executed by a device administrator\n"
},
"conditionAttributeName": {
"type": "string",
"description": "Dictionary attribute name\n"
},
"conditionAttributeValue": {
"type": "string",
"description": "Attribute value for condition. Value type is specified in dictionary object.\n"
},
"conditionDictionaryName": {
"type": "string",
"description": "Dictionary name\n"
},
"conditionDictionaryValue": {
"type": "string",
"description": "Dictionary value\n"
},
"conditionId": {
"type": "string",
"description": "UUID for condition\n"
},
"conditionIsNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"conditionOperator": {
"type": "string",
"description": "Equality operator - Choices: `contains`, `endsWith`, `equals`, `greaterOrEquals`, `greaterThan`, `in`, `ipEquals`,\n`ipGreaterThan`, `ipLessThan`, `ipNotEquals`, `lessOrEquals`, `lessThan`, `matches`, `notContains`, `notEndsWith`,\n`notEquals`, `notIn`, `notStartsWith`, `startsWith`\n"
},
"conditionType": {
"type": "string",
"description": "Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that\nadditional conditions are present under the children attribute. - Choices: `ConditionAndBlock`, `ConditionAttributes`,\n`ConditionOrBlock`, `ConditionReference`\n"
},
"default": {
"type": "boolean",
"description": "Indicates if this rule is the default one\n"
},
"name": {
"type": "string",
"description": "Rule name, [Valid characters are alphanumerics, underscore, hyphen, space, period, parentheses]\n"
},
"policySetId": {
"type": "string",
"description": "Policy set ID\n"
},
"profile": {
"type": "string",
"description": "Device admin profiles control the initial login session of the device administrator\n"
},
"rank": {
"type": "number",
"description": "The rank (priority) in relation to other rules. Lower rank is higher priority.\n"
},
"state": {
"type": "string",
"description": "The state that the rule is in. A disabled rule cannot be matched. - Choices: `disabled`, `enabled`, `monitor`\n"
}
},
"type": "object",
"required": [
"name",
"policySetId"
],
"inputProperties": {
"children": {
"type": "string",
"description": "List of child conditions. `condition_type` must be one of `ConditionAndBlock` or `ConditionOrBlock`.\n"
},
"commandSets": {
"type": "array",
"items": {
"type": "string"
},
"description": "Command sets enforce the specified list of commands that can be executed by a device administrator\n"
},
"conditionAttributeName": {
"type": "string",
"description": "Dictionary attribute name\n"
},
"conditionAttributeValue": {
"type": "string",
"description": "Attribute value for condition. Value type is specified in dictionary object.\n"
},
"conditionDictionaryName": {
"type": "string",
"description": "Dictionary name\n"
},
"conditionDictionaryValue": {
"type": "string",
"description": "Dictionary value\n"
},
"conditionId": {
"type": "string",
"description": "UUID for condition\n"
},
"conditionIsNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"conditionOperator": {
"type": "string",
"description": "Equality operator - Choices: `contains`, `endsWith`, `equals`, `greaterOrEquals`, `greaterThan`, `in`, `ipEquals`,\n`ipGreaterThan`, `ipLessThan`, `ipNotEquals`, `lessOrEquals`, `lessThan`, `matches`, `notContains`, `notEndsWith`,\n`notEquals`, `notIn`, `notStartsWith`, `startsWith`\n"
},
"conditionType": {
"type": "string",
"description": "Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that\nadditional conditions are present under the children attribute. - Choices: `ConditionAndBlock`, `ConditionAttributes`,\n`ConditionOrBlock`, `ConditionReference`\n"
},
"default": {
"type": "boolean",
"description": "Indicates if this rule is the default one\n"
},
"name": {
"type": "string",
"description": "Rule name, [Valid characters are alphanumerics, underscore, hyphen, space, period, parentheses]\n"
},
"policySetId": {
"type": "string",
"description": "Policy set ID\n"
},
"profile": {
"type": "string",
"description": "Device admin profiles control the initial login session of the device administrator\n"
},
"rank": {
"type": "number",
"description": "The rank (priority) in relation to other rules. Lower rank is higher priority.\n"
},
"state": {
"type": "string",
"description": "The state that the rule is in. A disabled rule cannot be matched. - Choices: `disabled`, `enabled`, `monitor`\n"
}
},
"requiredInputs": [
"policySetId"
],
"stateInputs": {
"description": "Input properties used for looking up and filtering DeviceAdminAuthorizationExceptionRule resources.\n",
"properties": {
"children": {
"type": "string",
"description": "List of child conditions. `condition_type` must be one of `ConditionAndBlock` or `ConditionOrBlock`.\n"
},
"commandSets": {
"type": "array",
"items": {
"type": "string"
},
"description": "Command sets enforce the specified list of commands that can be executed by a device administrator\n"
},
"conditionAttributeName": {
"type": "string",
"description": "Dictionary attribute name\n"
},
"conditionAttributeValue": {
"type": "string",
"description": "Attribute value for condition. Value type is specified in dictionary object.\n"
},
"conditionDictionaryName": {
"type": "string",
"description": "Dictionary name\n"
},
"conditionDictionaryValue": {
"type": "string",
"description": "Dictionary value\n"
},
"conditionId": {
"type": "string",
"description": "UUID for condition\n"
},
"conditionIsNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"conditionOperator": {
"type": "string",
"description": "Equality operator - Choices: `contains`, `endsWith`, `equals`, `greaterOrEquals`, `greaterThan`, `in`, `ipEquals`,\n`ipGreaterThan`, `ipLessThan`, `ipNotEquals`, `lessOrEquals`, `lessThan`, `matches`, `notContains`, `notEndsWith`,\n`notEquals`, `notIn`, `notStartsWith`, `startsWith`\n"
},
"conditionType": {
"type": "string",
"description": "Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that\nadditional conditions are present under the children attribute. - Choices: `ConditionAndBlock`, `ConditionAttributes`,\n`ConditionOrBlock`, `ConditionReference`\n"
},
"default": {
"type": "boolean",
"description": "Indicates if this rule is the default one\n"
},
"name": {
"type": "string",
"description": "Rule name, [Valid characters are alphanumerics, underscore, hyphen, space, period, parentheses]\n"
},
"policySetId": {
"type": "string",
"description": "Policy set ID\n"
},
"profile": {
"type": "string",
"description": "Device admin profiles control the initial login session of the device administrator\n"
},
"rank": {
"type": "number",
"description": "The rank (priority) in relation to other rules. Lower rank is higher priority.\n"
},
"state": {
"type": "string",
"description": "The state that the rule is in. A disabled rule cannot be matched. - Choices: `disabled`, `enabled`, `monitor`\n"
}
},
"type": "object"
}
},
"ise:index/deviceAdminAuthorizationGlobalExceptionRule:DeviceAdminAuthorizationGlobalExceptionRule": {
"properties": {
"children": {
"type": "string",
"description": "List of child conditions. `condition_type` must be one of `ConditionAndBlock` or `ConditionOrBlock`.\n"
},
"commandSets": {
"type": "array",
"items": {
"type": "string"
},
"description": "Command sets enforce the specified list of commands that can be executed by a device administrator\n"
},
"conditionAttributeName": {
"type": "string",
"description": "Dictionary attribute name\n"
},
"conditionAttributeValue": {
"type": "string",
"description": "Attribute value for condition. Value type is specified in dictionary object.\n"
},
"conditionDictionaryName": {
"type": "string",
"description": "Dictionary name\n"
},
"conditionDictionaryValue": {
"type": "string",
"description": "Dictionary value\n"
},
"conditionId": {
"type": "string",
"description": "UUID for condition\n"
},
"conditionIsNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"conditionOperator": {
"type": "string",
"description": "Equality operator - Choices: `contains`, `endsWith`, `equals`, `greaterOrEquals`, `greaterThan`, `in`, `ipEquals`,\n`ipGreaterThan`, `ipLessThan`, `ipNotEquals`, `lessOrEquals`, `lessThan`, `matches`, `notContains`, `notEndsWith`,\n`notEquals`, `notIn`, `notStartsWith`, `startsWith`\n"
},
"conditionType": {
"type": "string",
"description": "Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that\nadditional conditions are present under the children attribute. - Choices: `ConditionAndBlock`, `ConditionAttributes`,\n`ConditionOrBlock`, `ConditionReference`\n"
},
"default": {
"type": "boolean",
"description": "Indicates if this rule is the default one\n"
},
"name": {
"type": "string",
"description": "Rule name, [Valid characters are alphanumerics, underscore, hyphen, space, period, parentheses]\n"
},
"profile": {
"type": "string",
"description": "Device admin profiles control the initial login session of the device administrator\n"
},
"rank": {
"type": "number",
"description": "The rank (priority) in relation to other rules. Lower rank is higher priority.\n"
},
"state": {
"type": "string",
"description": "The state that the rule is in. A disabled rule cannot be matched. - Choices: `disabled`, `enabled`, `monitor`\n"
}
},
"type": "object",
"required": [
"name"
],
"inputProperties": {
"children": {
"type": "string",
"description": "List of child conditions. `condition_type` must be one of `ConditionAndBlock` or `ConditionOrBlock`.\n"
},
"commandSets": {
"type": "array",
"items": {
"type": "string"
},
"description": "Command sets enforce the specified list of commands that can be executed by a device administrator\n"
},
"conditionAttributeName": {
"type": "string",
"description": "Dictionary attribute name\n"
},
"conditionAttributeValue": {
"type": "string",
"description": "Attribute value for condition. Value type is specified in dictionary object.\n"
},
"conditionDictionaryName": {
"type": "string",
"description": "Dictionary name\n"
},
"conditionDictionaryValue": {
"type": "string",
"description": "Dictionary value\n"
},
"conditionId": {
"type": "string",
"description": "UUID for condition\n"
},
"conditionIsNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"conditionOperator": {
"type": "string",
"description": "Equality operator - Choices: `contains`, `endsWith`, `equals`, `greaterOrEquals`, `greaterThan`, `in`, `ipEquals`,\n`ipGreaterThan`, `ipLessThan`, `ipNotEquals`, `lessOrEquals`, `lessThan`, `matches`, `notContains`, `notEndsWith`,\n`notEquals`, `notIn`, `notStartsWith`, `startsWith`\n"
},
"conditionType": {
"type": "string",
"description": "Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that\nadditional conditions are present under the children attribute. - Choices: `ConditionAndBlock`, `ConditionAttributes`,\n`ConditionOrBlock`, `ConditionReference`\n"
},
"default": {
"type": "boolean",
"description": "Indicates if this rule is the default one\n"
},
"name": {
"type": "string",
"description": "Rule name, [Valid characters are alphanumerics, underscore, hyphen, space, period, parentheses]\n"
},
"profile": {
"type": "string",
"description": "Device admin profiles control the initial login session of the device administrator\n"
},
"rank": {
"type": "number",
"description": "The rank (priority) in relation to other rules. Lower rank is higher priority.\n"
},
"state": {
"type": "string",
"description": "The state that the rule is in. A disabled rule cannot be matched. - Choices: `disabled`, `enabled`, `monitor`\n"
}
},
"stateInputs": {
"description": "Input properties used for looking up and filtering DeviceAdminAuthorizationGlobalExceptionRule resources.\n",
"properties": {
"children": {
"type": "string",
"description": "List of child conditions. `condition_type` must be one of `ConditionAndBlock` or `ConditionOrBlock`.\n"
},
"commandSets": {
"type": "array",
"items": {
"type": "string"
},
"description": "Command sets enforce the specified list of commands that can be executed by a device administrator\n"
},
"conditionAttributeName": {
"type": "string",
"description": "Dictionary attribute name\n"
},
"conditionAttributeValue": {
"type": "string",
"description": "Attribute value for condition. Value type is specified in dictionary object.\n"
},
"conditionDictionaryName": {
"type": "string",
"description": "Dictionary name\n"
},
"conditionDictionaryValue": {
"type": "string",
"description": "Dictionary value\n"
},
"conditionId": {
"type": "string",
"description": "UUID for condition\n"
},
"conditionIsNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"conditionOperator": {
"type": "string",
"description": "Equality operator - Choices: `contains`, `endsWith`, `equals`, `greaterOrEquals`, `greaterThan`, `in`, `ipEquals`,\n`ipGreaterThan`, `ipLessThan`, `ipNotEquals`, `lessOrEquals`, `lessThan`, `matches`, `notContains`, `notEndsWith`,\n`notEquals`, `notIn`, `notStartsWith`, `startsWith`\n"
},
"conditionType": {
"type": "string",
"description": "Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that\nadditional conditions are present under the children attribute. - Choices: `ConditionAndBlock`, `ConditionAttributes`,\n`ConditionOrBlock`, `ConditionReference`\n"
},
"default": {
"type": "boolean",
"description": "Indicates if this rule is the default one\n"
},
"name": {
"type": "string",
"description": "Rule name, [Valid characters are alphanumerics, underscore, hyphen, space, period, parentheses]\n"
},
"profile": {
"type": "string",
"description": "Device admin profiles control the initial login session of the device administrator\n"
},
"rank": {
"type": "number",
"description": "The rank (priority) in relation to other rules. Lower rank is higher priority.\n"
},
"state": {
"type": "string",
"description": "The state that the rule is in. A disabled rule cannot be matched. - Choices: `disabled`, `enabled`, `monitor`\n"
}
},
"type": "object"
}
},
"ise:index/deviceAdminAuthorizationRule:DeviceAdminAuthorizationRule": {
"properties": {
"children": {
"type": "string",
"description": "List of child conditions. `condition_type` must be one of `ConditionAndBlock` or `ConditionOrBlock`.\n"
},
"commandSets": {
"type": "array",
"items": {
"type": "string"
},
"description": "Command sets enforce the specified list of commands that can be executed by a device administrator\n"
},
"conditionAttributeName": {
"type": "string",
"description": "Dictionary attribute name\n"
},
"conditionAttributeValue": {
"type": "string",
"description": "Attribute value for condition. Value type is specified in dictionary object.\n"
},
"conditionDictionaryName": {
"type": "string",
"description": "Dictionary name\n"
},
"conditionDictionaryValue": {
"type": "string",
"description": "Dictionary value\n"
},
"conditionId": {
"type": "string",
"description": "UUID for condition\n"
},
"conditionIsNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"conditionOperator": {
"type": "string",
"description": "Equality operator - Choices: `contains`, `endsWith`, `equals`, `greaterOrEquals`, `greaterThan`, `in`, `ipEquals`,\n`ipGreaterThan`, `ipLessThan`, `ipNotEquals`, `lessOrEquals`, `lessThan`, `matches`, `notContains`, `notEndsWith`,\n`notEquals`, `notIn`, `notStartsWith`, `startsWith`\n"
},
"conditionType": {
"type": "string",
"description": "Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that\nadditional conditions are present under the children attribute. - Choices: `ConditionAndBlock`, `ConditionAttributes`,\n`ConditionOrBlock`, `ConditionReference`\n"
},
"default": {
"type": "boolean",
"description": "Indicates if this rule is the default one\n"
},
"name": {
"type": "string",
"description": "Rule name, [Valid characters are alphanumerics, underscore, hyphen, space, period, parentheses]\n"
},
"policySetId": {
"type": "string",
"description": "Policy set ID\n"
},
"profile": {
"type": "string",
"description": "Device admin profiles control the initial login session of the device administrator\n"
},
"rank": {
"type": "number",
"description": "The rank (priority) in relation to other rules. Lower rank is higher priority.\n"
},
"state": {
"type": "string",
"description": "The state that the rule is in. A disabled rule cannot be matched. - Choices: `disabled`, `enabled`, `monitor`\n"
}
},
"type": "object",
"required": [
"name",
"policySetId"
],
"inputProperties": {
"children": {
"type": "string",
"description": "List of child conditions. `condition_type` must be one of `ConditionAndBlock` or `ConditionOrBlock`.\n"
},
"commandSets": {
"type": "array",
"items": {
"type": "string"
},
"description": "Command sets enforce the specified list of commands that can be executed by a device administrator\n"
},
"conditionAttributeName": {
"type": "string",
"description": "Dictionary attribute name\n"
},
"conditionAttributeValue": {
"type": "string",
"description": "Attribute value for condition. Value type is specified in dictionary object.\n"
},
"conditionDictionaryName": {
"type": "string",
"description": "Dictionary name\n"
},
"conditionDictionaryValue": {
"type": "string",
"description": "Dictionary value\n"
},
"conditionId": {
"type": "string",
"description": "UUID for condition\n"
},
"conditionIsNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"conditionOperator": {
"type": "string",
"description": "Equality operator - Choices: `contains`, `endsWith`, `equals`, `greaterOrEquals`, `greaterThan`, `in`, `ipEquals`,\n`ipGreaterThan`, `ipLessThan`, `ipNotEquals`, `lessOrEquals`, `lessThan`, `matches`, `notContains`, `notEndsWith`,\n`notEquals`, `notIn`, `notStartsWith`, `startsWith`\n"
},
"conditionType": {
"type": "string",
"description": "Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that\nadditional conditions are present under the children attribute. - Choices: `ConditionAndBlock`, `ConditionAttributes`,\n`ConditionOrBlock`, `ConditionReference`\n"
},
"default": {
"type": "boolean",
"description": "Indicates if this rule is the default one\n"
},
"name": {
"type": "string",
"description": "Rule name, [Valid characters are alphanumerics, underscore, hyphen, space, period, parentheses]\n"
},
"policySetId": {
"type": "string",
"description": "Policy set ID\n"
},
"profile": {
"type": "string",
"description": "Device admin profiles control the initial login session of the device administrator\n"
},
"rank": {
"type": "number",
"description": "The rank (priority) in relation to other rules. Lower rank is higher priority.\n"
},
"state": {
"type": "string",
"description": "The state that the rule is in. A disabled rule cannot be matched. - Choices: `disabled`, `enabled`, `monitor`\n"
}
},
"requiredInputs": [
"policySetId"
],
"stateInputs": {
"description": "Input properties used for looking up and filtering DeviceAdminAuthorizationRule resources.\n",
"properties": {
"children": {
"type": "string",
"description": "List of child conditions. `condition_type` must be one of `ConditionAndBlock` or `ConditionOrBlock`.\n"
},
"commandSets": {
"type": "array",
"items": {
"type": "string"
},
"description": "Command sets enforce the specified list of commands that can be executed by a device administrator\n"
},
"conditionAttributeName": {
"type": "string",
"description": "Dictionary attribute name\n"
},
"conditionAttributeValue": {
"type": "string",
"description": "Attribute value for condition. Value type is specified in dictionary object.\n"
},
"conditionDictionaryName": {
"type": "string",
"description": "Dictionary name\n"
},
"conditionDictionaryValue": {
"type": "string",
"description": "Dictionary value\n"
},
"conditionId": {
"type": "string",
"description": "UUID for condition\n"
},
"conditionIsNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"conditionOperator": {
"type": "string",
"description": "Equality operator - Choices: `contains`, `endsWith`, `equals`, `greaterOrEquals`, `greaterThan`, `in`, `ipEquals`,\n`ipGreaterThan`, `ipLessThan`, `ipNotEquals`, `lessOrEquals`, `lessThan`, `matches`, `notContains`, `notEndsWith`,\n`notEquals`, `notIn`, `notStartsWith`, `startsWith`\n"
},
"conditionType": {
"type": "string",
"description": "Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that\nadditional conditions are present under the children attribute. - Choices: `ConditionAndBlock`, `ConditionAttributes`,\n`ConditionOrBlock`, `ConditionReference`\n"
},
"default": {
"type": "boolean",
"description": "Indicates if this rule is the default one\n"
},
"name": {
"type": "string",
"description": "Rule name, [Valid characters are alphanumerics, underscore, hyphen, space, period, parentheses]\n"
},
"policySetId": {
"type": "string",
"description": "Policy set ID\n"
},
"profile": {
"type": "string",
"description": "Device admin profiles control the initial login session of the device administrator\n"
},
"rank": {
"type": "number",
"description": "The rank (priority) in relation to other rules. Lower rank is higher priority.\n"
},
"state": {
"type": "string",
"description": "The state that the rule is in. A disabled rule cannot be matched. - Choices: `disabled`, `enabled`, `monitor`\n"
}
},
"type": "object"
}
},
"ise:index/deviceAdminCondition:DeviceAdminCondition": {
"properties": {
"attributeName": {
"type": "string",
"description": "Dictionary attribute name\n"
},
"attributeValue": {
"type": "string",
"description": "Attribute value for condition. Value type is specified in dictionary object.\n"
},
"children": {
"type": "string",
"description": "List of child conditions. `condition_type` must be one of `LibraryConditionAndBlock` or `LibraryConditionOrBlock`.\n"
},
"conditionType": {
"type": "string",
"description": "Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that\nadditional conditions are present under the children attribute. - Choices: `LibraryConditionAndBlock`,\n`LibraryConditionAttributes`, `LibraryConditionOrBlock`\n"
},
"description": {
"type": "string",
"description": "Condition description\n"
},
"dictionaryName": {
"type": "string",
"description": "Dictionary name\n"
},
"dictionaryValue": {
"type": "string",
"description": "Dictionary value\n"
},
"isNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"name": {
"type": "string",
"description": "Condition name\n"
},
"operator": {
"type": "string",
"description": "Equality operator - Choices: `contains`, `endsWith`, `equals`, `greaterOrEquals`, `greaterThan`, `in`, `ipEquals`,\n`ipGreaterThan`, `ipLessThan`, `ipNotEquals`, `lessOrEquals`, `lessThan`, `matches`, `notContains`, `notEndsWith`,\n`notEquals`, `notIn`, `notStartsWith`, `startsWith`\n"
}
},
"type": "object",
"required": [
"conditionType",
"name"
],
"inputProperties": {
"attributeName": {
"type": "string",
"description": "Dictionary attribute name\n"
},
"attributeValue": {
"type": "string",
"description": "Attribute value for condition. Value type is specified in dictionary object.\n"
},
"children": {
"type": "string",
"description": "List of child conditions. `condition_type` must be one of `LibraryConditionAndBlock` or `LibraryConditionOrBlock`.\n"
},
"conditionType": {
"type": "string",
"description": "Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that\nadditional conditions are present under the children attribute. - Choices: `LibraryConditionAndBlock`,\n`LibraryConditionAttributes`, `LibraryConditionOrBlock`\n"
},
"description": {
"type": "string",
"description": "Condition description\n"
},
"dictionaryName": {
"type": "string",
"description": "Dictionary name\n"
},
"dictionaryValue": {
"type": "string",
"description": "Dictionary value\n"
},
"isNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"name": {
"type": "string",
"description": "Condition name\n"
},
"operator": {
"type": "string",
"description": "Equality operator - Choices: `contains`, `endsWith`, `equals`, `greaterOrEquals`, `greaterThan`, `in`, `ipEquals`,\n`ipGreaterThan`, `ipLessThan`, `ipNotEquals`, `lessOrEquals`, `lessThan`, `matches`, `notContains`, `notEndsWith`,\n`notEquals`, `notIn`, `notStartsWith`, `startsWith`\n"
}
},
"requiredInputs": [
"conditionType"
],
"stateInputs": {
"description": "Input properties used for looking up and filtering DeviceAdminCondition resources.\n",
"properties": {
"attributeName": {
"type": "string",
"description": "Dictionary attribute name\n"
},
"attributeValue": {
"type": "string",
"description": "Attribute value for condition. Value type is specified in dictionary object.\n"
},
"children": {
"type": "string",
"description": "List of child conditions. `condition_type` must be one of `LibraryConditionAndBlock` or `LibraryConditionOrBlock`.\n"
},
"conditionType": {
"type": "string",
"description": "Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that\nadditional conditions are present under the children attribute. - Choices: `LibraryConditionAndBlock`,\n`LibraryConditionAttributes`, `LibraryConditionOrBlock`\n"
},
"description": {
"type": "string",
"description": "Condition description\n"
},
"dictionaryName": {
"type": "string",
"description": "Dictionary name\n"
},
"dictionaryValue": {
"type": "string",
"description": "Dictionary value\n"
},
"isNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"name": {
"type": "string",
"description": "Condition name\n"
},
"operator": {
"type": "string",
"description": "Equality operator - Choices: `contains`, `endsWith`, `equals`, `greaterOrEquals`, `greaterThan`, `in`, `ipEquals`,\n`ipGreaterThan`, `ipLessThan`, `ipNotEquals`, `lessOrEquals`, `lessThan`, `matches`, `notContains`, `notEndsWith`,\n`notEquals`, `notIn`, `notStartsWith`, `startsWith`\n"
}
},
"type": "object"
}
},
"ise:index/deviceAdminPolicySet:DeviceAdminPolicySet": {
"properties": {
"children": {
"type": "string",
"description": "List of child conditions. `condition_type` must be one of `ConditionAndBlock` or `ConditionOrBlock`.\n"
},
"conditionAttributeName": {
"type": "string",
"description": "Dictionary attribute name\n"
},
"conditionAttributeValue": {
"type": "string",
"description": "Attribute value for condition. Value type is specified in dictionary object.\n"
},
"conditionDictionaryName": {
"type": "string",
"description": "Dictionary name\n"
},
"conditionDictionaryValue": {
"type": "string",
"description": "Dictionary value\n"
},
"conditionId": {
"type": "string",
"description": "UUID for condition\n"
},
"conditionIsNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"conditionOperator": {
"type": "string",
"description": "Equality operator - Choices: `contains`, `endsWith`, `equals`, `greaterOrEquals`, `greaterThan`, `in`, `ipEquals`,\n`ipGreaterThan`, `ipLessThan`, `ipNotEquals`, `lessOrEquals`, `lessThan`, `matches`, `notContains`, `notEndsWith`,\n`notEquals`, `notIn`, `notStartsWith`, `startsWith`\n"
},
"conditionType": {
"type": "string",
"description": "Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that\nadditional conditions are present under the children attribute. - Choices: `ConditionAndBlock`, `ConditionAttributes`,\n`ConditionOrBlock`, `ConditionReference`\n"
},
"default": {
"type": "boolean",
"description": "Indicates if this policy set is the default one\n"
},
"description": {
"type": "string",
"description": "The description of the policy set\n"
},
"isProxy": {
"type": "boolean",
"description": "Flag which indicates if the policy set service is of type 'Proxy Sequence' or 'Allowed Protocols'\n"
},
"name": {
"type": "string",
"description": "Given name for the policy set, [Valid characters are alphanumerics, underscore, hyphen, space, period, parentheses]\n"
},
"rank": {
"type": "number",
"description": "The rank (priority) in relation to other policy sets. Lower rank is higher priority.\n"
},
"serviceName": {
"type": "string",
"description": "Policy set service identifier. 'Allowed Protocols' or 'Server Sequence'.\n"
},
"state": {
"type": "string",
"description": "The state that the policy set is in. A disabled policy set cannot be matched. - Choices: `disabled`, `enabled`,\n`monitor`\n"
}
},
"type": "object",
"required": [
"description",
"name",
"rank",
"serviceName"
],
"inputProperties": {
"children": {
"type": "string",
"description": "List of child conditions. `condition_type` must be one of `ConditionAndBlock` or `ConditionOrBlock`.\n"
},
"conditionAttributeName": {
"type": "string",
"description": "Dictionary attribute name\n"
},
"conditionAttributeValue": {
"type": "string",
"description": "Attribute value for condition. Value type is specified in dictionary object.\n"
},
"conditionDictionaryName": {
"type": "string",
"description": "Dictionary name\n"
},
"conditionDictionaryValue": {
"type": "string",
"description": "Dictionary value\n"
},
"conditionId": {
"type": "string",
"description": "UUID for condition\n"
},
"conditionIsNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"conditionOperator": {
"type": "string",
"description": "Equality operator - Choices: `contains`, `endsWith`, `equals`, `greaterOrEquals`, `greaterThan`, `in`, `ipEquals`,\n`ipGreaterThan`, `ipLessThan`, `ipNotEquals`, `lessOrEquals`, `lessThan`, `matches`, `notContains`, `notEndsWith`,\n`notEquals`, `notIn`, `notStartsWith`, `startsWith`\n"
},
"conditionType": {
"type": "string",
"description": "Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that\nadditional conditions are present under the children attribute. - Choices: `ConditionAndBlock`, `ConditionAttributes`,\n`ConditionOrBlock`, `ConditionReference`\n"
},
"default": {
"type": "boolean",
"description": "Indicates if this policy set is the default one\n"
},
"description": {
"type": "string",
"description": "The description of the policy set\n"
},
"isProxy": {
"type": "boolean",
"description": "Flag which indicates if the policy set service is of type 'Proxy Sequence' or 'Allowed Protocols'\n"
},
"name": {
"type": "string",
"description": "Given name for the policy set, [Valid characters are alphanumerics, underscore, hyphen, space, period, parentheses]\n"
},
"rank": {
"type": "number",
"description": "The rank (priority) in relation to other policy sets. Lower rank is higher priority.\n"
},
"serviceName": {
"type": "string",
"description": "Policy set service identifier. 'Allowed Protocols' or 'Server Sequence'.\n"
},
"state": {
"type": "string",
"description": "The state that the policy set is in. A disabled policy set cannot be matched. - Choices: `disabled`, `enabled`,\n`monitor`\n"
}
},
"requiredInputs": [
"serviceName"
],
"stateInputs": {
"description": "Input properties used for looking up and filtering DeviceAdminPolicySet resources.\n",
"properties": {
"children": {
"type": "string",
"description": "List of child conditions. `condition_type` must be one of `ConditionAndBlock` or `ConditionOrBlock`.\n"
},
"conditionAttributeName": {
"type": "string",
"description": "Dictionary attribute name\n"
},
"conditionAttributeValue": {
"type": "string",
"description": "Attribute value for condition. Value type is specified in dictionary object.\n"
},
"conditionDictionaryName": {
"type": "string",
"description": "Dictionary name\n"
},
"conditionDictionaryValue": {
"type": "string",
"description": "Dictionary value\n"
},
"conditionId": {
"type": "string",
"description": "UUID for condition\n"
},
"conditionIsNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"conditionOperator": {
"type": "string",
"description": "Equality operator - Choices: `contains`, `endsWith`, `equals`, `greaterOrEquals`, `greaterThan`, `in`, `ipEquals`,\n`ipGreaterThan`, `ipLessThan`, `ipNotEquals`, `lessOrEquals`, `lessThan`, `matches`, `notContains`, `notEndsWith`,\n`notEquals`, `notIn`, `notStartsWith`, `startsWith`\n"
},
"conditionType": {
"type": "string",
"description": "Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that\nadditional conditions are present under the children attribute. - Choices: `ConditionAndBlock`, `ConditionAttributes`,\n`ConditionOrBlock`, `ConditionReference`\n"
},
"default": {
"type": "boolean",
"description": "Indicates if this policy set is the default one\n"
},
"description": {
"type": "string",
"description": "The description of the policy set\n"
},
"isProxy": {
"type": "boolean",
"description": "Flag which indicates if the policy set service is of type 'Proxy Sequence' or 'Allowed Protocols'\n"
},
"name": {
"type": "string",
"description": "Given name for the policy set, [Valid characters are alphanumerics, underscore, hyphen, space, period, parentheses]\n"
},
"rank": {
"type": "number",
"description": "The rank (priority) in relation to other policy sets. Lower rank is higher priority.\n"
},
"serviceName": {
"type": "string",
"description": "Policy set service identifier. 'Allowed Protocols' or 'Server Sequence'.\n"
},
"state": {
"type": "string",
"description": "The state that the policy set is in. A disabled policy set cannot be matched. - Choices: `disabled`, `enabled`,\n`monitor`\n"
}
},
"type": "object"
}
},
"ise:index/deviceAdminTimeAndDateCondition:DeviceAdminTimeAndDateCondition": {
"properties": {
"description": {
"type": "string",
"description": "Condition description\n"
},
"endDate": {
"type": "string",
"description": "End date\n"
},
"endTime": {
"type": "string",
"description": "End time\n"
},
"exceptionEndDate": {
"type": "string",
"description": "Exception end date\n"
},
"exceptionEndTime": {
"type": "string",
"description": "Exception end time\n"
},
"exceptionStartDate": {
"type": "string",
"description": "Exception start date\n"
},
"exceptionStartTime": {
"type": "string",
"description": "Exception start time\n"
},
"isNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"name": {
"type": "string",
"description": "Condition name\n"
},
"startDate": {
"type": "string",
"description": "Start date\n"
},
"startTime": {
"type": "string",
"description": "Start time\n"
},
"weekDays": {
"type": "array",
"items": {
"type": "string"
},
"description": "Defines for which days this condition will be matched. List of weekdays - `Monday`, `Tuesday`, `Wednesday`, `Thursday`,\n`Friday`, `Saturday`, `Sunday`. Default - List of all week days.\n"
},
"weekDaysExceptions": {
"type": "array",
"items": {
"type": "string"
},
"description": "Defines for which days this condition will NOT be matched. List of weekdays - `Monday`, `Tuesday`, `Wednesday`,\n`Thursday`, `Friday`, `Saturday`, `Sunday`.\n"
}
},
"type": "object",
"required": [
"name"
],
"inputProperties": {
"description": {
"type": "string",
"description": "Condition description\n"
},
"endDate": {
"type": "string",
"description": "End date\n"
},
"endTime": {
"type": "string",
"description": "End time\n"
},
"exceptionEndDate": {
"type": "string",
"description": "Exception end date\n"
},
"exceptionEndTime": {
"type": "string",
"description": "Exception end time\n"
},
"exceptionStartDate": {
"type": "string",
"description": "Exception start date\n"
},
"exceptionStartTime": {
"type": "string",
"description": "Exception start time\n"
},
"isNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"name": {
"type": "string",
"description": "Condition name\n"
},
"startDate": {
"type": "string",
"description": "Start date\n"
},
"startTime": {
"type": "string",
"description": "Start time\n"
},
"weekDays": {
"type": "array",
"items": {
"type": "string"
},
"description": "Defines for which days this condition will be matched. List of weekdays - `Monday`, `Tuesday`, `Wednesday`, `Thursday`,\n`Friday`, `Saturday`, `Sunday`. Default - List of all week days.\n"
},
"weekDaysExceptions": {
"type": "array",
"items": {
"type": "string"
},
"description": "Defines for which days this condition will NOT be matched. List of weekdays - `Monday`, `Tuesday`, `Wednesday`,\n`Thursday`, `Friday`, `Saturday`, `Sunday`.\n"
}
},
"stateInputs": {
"description": "Input properties used for looking up and filtering DeviceAdminTimeAndDateCondition resources.\n",
"properties": {
"description": {
"type": "string",
"description": "Condition description\n"
},
"endDate": {
"type": "string",
"description": "End date\n"
},
"endTime": {
"type": "string",
"description": "End time\n"
},
"exceptionEndDate": {
"type": "string",
"description": "Exception end date\n"
},
"exceptionEndTime": {
"type": "string",
"description": "Exception end time\n"
},
"exceptionStartDate": {
"type": "string",
"description": "Exception start date\n"
},
"exceptionStartTime": {
"type": "string",
"description": "Exception start time\n"
},
"isNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"name": {
"type": "string",
"description": "Condition name\n"
},
"startDate": {
"type": "string",
"description": "Start date\n"
},
"startTime": {
"type": "string",
"description": "Start time\n"
},
"weekDays": {
"type": "array",
"items": {
"type": "string"
},
"description": "Defines for which days this condition will be matched. List of weekdays - `Monday`, `Tuesday`, `Wednesday`, `Thursday`,\n`Friday`, `Saturday`, `Sunday`. Default - List of all week days.\n"
},
"weekDaysExceptions": {
"type": "array",
"items": {
"type": "string"
},
"description": "Defines for which days this condition will NOT be matched. List of weekdays - `Monday`, `Tuesday`, `Wednesday`,\n`Thursday`, `Friday`, `Saturday`, `Sunday`.\n"
}
},
"type": "object"
}
},
"ise:index/downloadableAcl:DownloadableAcl": {
"properties": {
"dacl": {
"type": "string",
"description": "The DACL content\n"
},
"daclType": {
"type": "string",
"description": "The type of ACL - Choices: `IPV4`, `IPV6`, `IP_AGNOSTIC` - Default value: `IPV4`\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"name": {
"type": "string",
"description": "The name of the downloadable ACL\n"
}
},
"type": "object",
"required": [
"dacl",
"daclType",
"name"
],
"inputProperties": {
"dacl": {
"type": "string",
"description": "The DACL content\n"
},
"daclType": {
"type": "string",
"description": "The type of ACL - Choices: `IPV4`, `IPV6`, `IP_AGNOSTIC` - Default value: `IPV4`\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"name": {
"type": "string",
"description": "The name of the downloadable ACL\n"
}
},
"requiredInputs": [
"dacl"
],
"stateInputs": {
"description": "Input properties used for looking up and filtering DownloadableAcl resources.\n",
"properties": {
"dacl": {
"type": "string",
"description": "The DACL content\n"
},
"daclType": {
"type": "string",
"description": "The type of ACL - Choices: `IPV4`, `IPV6`, `IP_AGNOSTIC` - Default value: `IPV4`\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"name": {
"type": "string",
"description": "The name of the downloadable ACL\n"
}
},
"type": "object"
}
},
"ise:index/endpoint:Endpoint": {
"properties": {
"customAttributes": {
"type": "object",
"additionalProperties": {
"type": "string"
},
"description": "Custom Attributes\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"groupId": {
"type": "string",
"description": "Identity Group ID\n"
},
"identityStore": {
"type": "string",
"description": "Identity Store\n"
},
"identityStoreId": {
"type": "string",
"description": "Identity Store Id\n"
},
"mac": {
"type": "string",
"description": "MAC address of the endpoint\n"
},
"mdmComplianceStatus": {
"type": "boolean",
"description": "Mdm Compliance Status\n"
},
"mdmEncrypted": {
"type": "boolean",
"description": "Mdm Encrypted\n"
},
"mdmEnrolled": {
"type": "boolean",
"description": "Mdm Enrolled\n"
},
"mdmImei": {
"type": "string",
"description": "Mdm IMEI\n"
},
"mdmJailBroken": {
"type": "boolean",
"description": "Mdm JailBroken\n"
},
"mdmManufacturer": {
"type": "string",
"description": "Mdm Manufacturer\n"
},
"mdmModel": {
"type": "string",
"description": "Mdm Model\n"
},
"mdmOs": {
"type": "string",
"description": "Mdm OS\n"
},
"mdmPhoneNumber": {
"type": "string",
"description": "Mdm PhoneNumber\n"
},
"mdmPinlock": {
"type": "boolean",
"description": "Mdm Pinlock\n"
},
"mdmReachable": {
"type": "boolean",
"description": "Mdm Reachable\n"
},
"mdmSerial": {
"type": "string",
"description": "Mdm Serial\n"
},
"mdmServerName": {
"type": "string",
"description": "Mdm Server Name\n"
},
"name": {
"type": "string",
"description": "The name of the endpoint\n"
},
"portalUser": {
"type": "string",
"description": "Portal User\n"
},
"profileId": {
"type": "string",
"description": "Profile ID\n"
},
"staticGroupAssignment": {
"type": "boolean",
"description": "Static Group Assignment\n"
},
"staticGroupAssignmentDefined": {
"type": "boolean",
"description": "staticGroupAssignmentDefined - Default value: `true`\n"
},
"staticProfileAssignment": {
"type": "boolean",
"description": "Static Profile Assignment\n"
},
"staticProfileAssignmentDefined": {
"type": "boolean",
"description": "Static Profile Assignment Defined - Default value: `true`\n"
}
},
"type": "object",
"required": [
"mac",
"name",
"staticGroupAssignment",
"staticGroupAssignmentDefined",
"staticProfileAssignment",
"staticProfileAssignmentDefined"
],
"inputProperties": {
"customAttributes": {
"type": "object",
"additionalProperties": {
"type": "string"
},
"description": "Custom Attributes\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"groupId": {
"type": "string",
"description": "Identity Group ID\n"
},
"identityStore": {
"type": "string",
"description": "Identity Store\n"
},
"identityStoreId": {
"type": "string",
"description": "Identity Store Id\n"
},
"mac": {
"type": "string",
"description": "MAC address of the endpoint\n"
},
"mdmComplianceStatus": {
"type": "boolean",
"description": "Mdm Compliance Status\n"
},
"mdmEncrypted": {
"type": "boolean",
"description": "Mdm Encrypted\n"
},
"mdmEnrolled": {
"type": "boolean",
"description": "Mdm Enrolled\n"
},
"mdmImei": {
"type": "string",
"description": "Mdm IMEI\n"
},
"mdmJailBroken": {
"type": "boolean",
"description": "Mdm JailBroken\n"
},
"mdmManufacturer": {
"type": "string",
"description": "Mdm Manufacturer\n"
},
"mdmModel": {
"type": "string",
"description": "Mdm Model\n"
},
"mdmOs": {
"type": "string",
"description": "Mdm OS\n"
},
"mdmPhoneNumber": {
"type": "string",
"description": "Mdm PhoneNumber\n"
},
"mdmPinlock": {
"type": "boolean",
"description": "Mdm Pinlock\n"
},
"mdmReachable": {
"type": "boolean",
"description": "Mdm Reachable\n"
},
"mdmSerial": {
"type": "string",
"description": "Mdm Serial\n"
},
"mdmServerName": {
"type": "string",
"description": "Mdm Server Name\n"
},
"name": {
"type": "string",
"description": "The name of the endpoint\n"
},
"portalUser": {
"type": "string",
"description": "Portal User\n"
},
"profileId": {
"type": "string",
"description": "Profile ID\n"
},
"staticGroupAssignment": {
"type": "boolean",
"description": "Static Group Assignment\n"
},
"staticGroupAssignmentDefined": {
"type": "boolean",
"description": "staticGroupAssignmentDefined - Default value: `true`\n"
},
"staticProfileAssignment": {
"type": "boolean",
"description": "Static Profile Assignment\n"
},
"staticProfileAssignmentDefined": {
"type": "boolean",
"description": "Static Profile Assignment Defined - Default value: `true`\n"
}
},
"requiredInputs": [
"mac",
"staticGroupAssignment",
"staticProfileAssignment"
],
"stateInputs": {
"description": "Input properties used for looking up and filtering Endpoint resources.\n",
"properties": {
"customAttributes": {
"type": "object",
"additionalProperties": {
"type": "string"
},
"description": "Custom Attributes\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"groupId": {
"type": "string",
"description": "Identity Group ID\n"
},
"identityStore": {
"type": "string",
"description": "Identity Store\n"
},
"identityStoreId": {
"type": "string",
"description": "Identity Store Id\n"
},
"mac": {
"type": "string",
"description": "MAC address of the endpoint\n"
},
"mdmComplianceStatus": {
"type": "boolean",
"description": "Mdm Compliance Status\n"
},
"mdmEncrypted": {
"type": "boolean",
"description": "Mdm Encrypted\n"
},
"mdmEnrolled": {
"type": "boolean",
"description": "Mdm Enrolled\n"
},
"mdmImei": {
"type": "string",
"description": "Mdm IMEI\n"
},
"mdmJailBroken": {
"type": "boolean",
"description": "Mdm JailBroken\n"
},
"mdmManufacturer": {
"type": "string",
"description": "Mdm Manufacturer\n"
},
"mdmModel": {
"type": "string",
"description": "Mdm Model\n"
},
"mdmOs": {
"type": "string",
"description": "Mdm OS\n"
},
"mdmPhoneNumber": {
"type": "string",
"description": "Mdm PhoneNumber\n"
},
"mdmPinlock": {
"type": "boolean",
"description": "Mdm Pinlock\n"
},
"mdmReachable": {
"type": "boolean",
"description": "Mdm Reachable\n"
},
"mdmSerial": {
"type": "string",
"description": "Mdm Serial\n"
},
"mdmServerName": {
"type": "string",
"description": "Mdm Server Name\n"
},
"name": {
"type": "string",
"description": "The name of the endpoint\n"
},
"portalUser": {
"type": "string",
"description": "Portal User\n"
},
"profileId": {
"type": "string",
"description": "Profile ID\n"
},
"staticGroupAssignment": {
"type": "boolean",
"description": "Static Group Assignment\n"
},
"staticGroupAssignmentDefined": {
"type": "boolean",
"description": "staticGroupAssignmentDefined - Default value: `true`\n"
},
"staticProfileAssignment": {
"type": "boolean",
"description": "Static Profile Assignment\n"
},
"staticProfileAssignmentDefined": {
"type": "boolean",
"description": "Static Profile Assignment Defined - Default value: `true`\n"
}
},
"type": "object"
}
},
"ise:index/endpointIdentityGroup:EndpointIdentityGroup": {
"properties": {
"description": {
"type": "string",
"description": "Description\n"
},
"name": {
"type": "string",
"description": "The name of the endpoint identity group\n"
},
"parentEndpointIdentityGroupId": {
"type": "string",
"description": "Parent endpoint identity group ID\n"
},
"systemDefined": {
"type": "boolean",
"description": "System defined endpoint identity group - Default value: `false`\n"
}
},
"type": "object",
"required": [
"name",
"systemDefined"
],
"inputProperties": {
"description": {
"type": "string",
"description": "Description\n"
},
"name": {
"type": "string",
"description": "The name of the endpoint identity group\n"
},
"parentEndpointIdentityGroupId": {
"type": "string",
"description": "Parent endpoint identity group ID\n"
},
"systemDefined": {
"type": "boolean",
"description": "System defined endpoint identity group - Default value: `false`\n"
}
},
"stateInputs": {
"description": "Input properties used for looking up and filtering EndpointIdentityGroup resources.\n",
"properties": {
"description": {
"type": "string",
"description": "Description\n"
},
"name": {
"type": "string",
"description": "The name of the endpoint identity group\n"
},
"parentEndpointIdentityGroupId": {
"type": "string",
"description": "Parent endpoint identity group ID\n"
},
"systemDefined": {
"type": "boolean",
"description": "System defined endpoint identity group - Default value: `false`\n"
}
},
"type": "object"
}
},
"ise:index/identitySourceSequence:IdentitySourceSequence": {
"properties": {
"breakOnStoreFail": {
"type": "boolean",
"description": "Do not access other stores in the sequence if a selected identity store cannot be accessed for authentication\n"
},
"certificateAuthenticationProfile": {
"type": "string",
"description": "Certificate Authentication Profile, empty if doesn't exist\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"identitySources": {
"type": "string"
},
"name": {
"type": "string",
"description": "The name of the identity source sequence\n"
}
},
"type": "object",
"required": [
"breakOnStoreFail",
"certificateAuthenticationProfile",
"identitySources",
"name"
],
"inputProperties": {
"breakOnStoreFail": {
"type": "boolean",
"description": "Do not access other stores in the sequence if a selected identity store cannot be accessed for authentication\n"
},
"certificateAuthenticationProfile": {
"type": "string",
"description": "Certificate Authentication Profile, empty if doesn't exist\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"identitySources": {
"type": "string"
},
"name": {
"type": "string",
"description": "The name of the identity source sequence\n"
}
},
"requiredInputs": [
"breakOnStoreFail",
"certificateAuthenticationProfile",
"identitySources"
],
"stateInputs": {
"description": "Input properties used for looking up and filtering IdentitySourceSequence resources.\n",
"properties": {
"breakOnStoreFail": {
"type": "boolean",
"description": "Do not access other stores in the sequence if a selected identity store cannot be accessed for authentication\n"
},
"certificateAuthenticationProfile": {
"type": "string",
"description": "Certificate Authentication Profile, empty if doesn't exist\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"identitySources": {
"type": "string"
},
"name": {
"type": "string",
"description": "The name of the identity source sequence\n"
}
},
"type": "object"
}
},
"ise:index/internalUser:InternalUser": {
"properties": {
"accountNameAlias": {
"type": "string",
"description": "The Account Name Alias will be used to send email notifications about password expiration. This field is only supported\nfrom ISE 3.2.\n"
},
"changePassword": {
"type": "boolean",
"description": "Requires the user to change the password - Default value: `true`\n"
},
"customAttributes": {
"type": "string",
"description": "Key value map\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"email": {
"type": "string",
"description": "Email address\n"
},
"enablePassword": {
"type": "string",
"description": "This field is added in ISE 2.0 to support TACACS+\n"
},
"enabled": {
"type": "boolean",
"description": "Whether the user is enabled/disabled\n"
},
"firstName": {
"type": "string",
"description": "First name of the internal user\n"
},
"identityGroups": {
"type": "string",
"description": "Comma separated list of identity group IDs.\n"
},
"lastName": {
"type": "string",
"description": "Last name of the internal user\n"
},
"name": {
"type": "string",
"description": "The name of the internal user\n"
},
"password": {
"type": "string",
"description": "The password of the internal user\n"
},
"passwordIdStore": {
"type": "string",
"description": "The ID store where the internal user's password is kept - Default value: `Internal Users`\n"
},
"passwordNeverExpires": {
"type": "boolean",
"description": "Set to `true` to indicate the user password never expires. This will not apply to Users who are also ISE Admins. This\nfield is only supported from ISE 3.2. - Default value: `false`\n"
}
},
"type": "object",
"required": [
"changePassword",
"name",
"password",
"passwordIdStore",
"passwordNeverExpires"
],
"inputProperties": {
"accountNameAlias": {
"type": "string",
"description": "The Account Name Alias will be used to send email notifications about password expiration. This field is only supported\nfrom ISE 3.2.\n"
},
"changePassword": {
"type": "boolean",
"description": "Requires the user to change the password - Default value: `true`\n"
},
"customAttributes": {
"type": "string",
"description": "Key value map\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"email": {
"type": "string",
"description": "Email address\n"
},
"enablePassword": {
"type": "string",
"description": "This field is added in ISE 2.0 to support TACACS+\n"
},
"enabled": {
"type": "boolean",
"description": "Whether the user is enabled/disabled\n"
},
"firstName": {
"type": "string",
"description": "First name of the internal user\n"
},
"identityGroups": {
"type": "string",
"description": "Comma separated list of identity group IDs.\n"
},
"lastName": {
"type": "string",
"description": "Last name of the internal user\n"
},
"name": {
"type": "string",
"description": "The name of the internal user\n"
},
"password": {
"type": "string",
"description": "The password of the internal user\n"
},
"passwordIdStore": {
"type": "string",
"description": "The ID store where the internal user's password is kept - Default value: `Internal Users`\n"
},
"passwordNeverExpires": {
"type": "boolean",
"description": "Set to `true` to indicate the user password never expires. This will not apply to Users who are also ISE Admins. This\nfield is only supported from ISE 3.2. - Default value: `false`\n"
}
},
"requiredInputs": [
"password"
],
"stateInputs": {
"description": "Input properties used for looking up and filtering InternalUser resources.\n",
"properties": {
"accountNameAlias": {
"type": "string",
"description": "The Account Name Alias will be used to send email notifications about password expiration. This field is only supported\nfrom ISE 3.2.\n"
},
"changePassword": {
"type": "boolean",
"description": "Requires the user to change the password - Default value: `true`\n"
},
"customAttributes": {
"type": "string",
"description": "Key value map\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"email": {
"type": "string",
"description": "Email address\n"
},
"enablePassword": {
"type": "string",
"description": "This field is added in ISE 2.0 to support TACACS+\n"
},
"enabled": {
"type": "boolean",
"description": "Whether the user is enabled/disabled\n"
},
"firstName": {
"type": "string",
"description": "First name of the internal user\n"
},
"identityGroups": {
"type": "string",
"description": "Comma separated list of identity group IDs.\n"
},
"lastName": {
"type": "string",
"description": "Last name of the internal user\n"
},
"name": {
"type": "string",
"description": "The name of the internal user\n"
},
"password": {
"type": "string",
"description": "The password of the internal user\n"
},
"passwordIdStore": {
"type": "string",
"description": "The ID store where the internal user's password is kept - Default value: `Internal Users`\n"
},
"passwordNeverExpires": {
"type": "boolean",
"description": "Set to `true` to indicate the user password never expires. This will not apply to Users who are also ISE Admins. This\nfield is only supported from ISE 3.2. - Default value: `false`\n"
}
},
"type": "object"
}
},
"ise:index/licenseTierState:LicenseTierState": {
"properties": {
"licenses": {
"type": "string",
"description": "List of licenses\n"
}
},
"type": "object",
"required": [
"licenses"
],
"inputProperties": {
"licenses": {
"type": "string",
"description": "List of licenses\n"
}
},
"requiredInputs": [
"licenses"
],
"stateInputs": {
"description": "Input properties used for looking up and filtering LicenseTierState resources.\n",
"properties": {
"licenses": {
"type": "string",
"description": "List of licenses\n"
}
},
"type": "object"
}
},
"ise:index/networkAccessAuthenticationRule:NetworkAccessAuthenticationRule": {
"properties": {
"children": {
"type": "string",
"description": "List of child conditions. `condition_type` must be one of `ConditionAndBlock` or `ConditionOrBlock`.\n"
},
"conditionAttributeName": {
"type": "string",
"description": "Dictionary attribute name\n"
},
"conditionAttributeValue": {
"type": "string",
"description": "Attribute value for condition. Value type is specified in dictionary object.\n"
},
"conditionDictionaryName": {
"type": "string",
"description": "Dictionary name\n"
},
"conditionDictionaryValue": {
"type": "string",
"description": "Dictionary value\n"
},
"conditionId": {
"type": "string",
"description": "UUID for condition\n"
},
"conditionIsNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"conditionOperator": {
"type": "string",
"description": "Equality operator - Choices: `contains`, `endsWith`, `equals`, `greaterOrEquals`, `greaterThan`, `in`, `ipEquals`,\n`ipGreaterThan`, `ipLessThan`, `ipNotEquals`, `lessOrEquals`, `lessThan`, `matches`, `notContains`, `notEndsWith`,\n`notEquals`, `notIn`, `notStartsWith`, `startsWith`\n"
},
"conditionType": {
"type": "string",
"description": "Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that\nadditional conditions are present under the children attribute. - Choices: `ConditionAndBlock`, `ConditionAttributes`,\n`ConditionOrBlock`, `ConditionReference`\n"
},
"default": {
"type": "boolean",
"description": "Indicates if this rule is the default one\n"
},
"identitySourceName": {
"type": "string",
"description": "Identity source name from the identity stores\n"
},
"ifAuthFail": {
"type": "string",
"description": "Action to perform when authentication fails such as Bad credentials, disabled user and so on - Choices: `REJECT`,\n`DROP`, `CONTINUE`\n"
},
"ifProcessFail": {
"type": "string",
"description": "Action to perform when ISE is uanble to access the identity database - Choices: `REJECT`, `DROP`, `CONTINUE`\n"
},
"ifUserNotFound": {
"type": "string",
"description": "Action to perform when user is not found in any of identity stores - Choices: `REJECT`, `DROP`, `CONTINUE`\n"
},
"name": {
"type": "string",
"description": "Rule name, [Valid characters are alphanumerics, underscore, hyphen, space, period, parentheses]\n"
},
"policySetId": {
"type": "string",
"description": "Policy set ID\n"
},
"rank": {
"type": "number",
"description": "The rank (priority) in relation to other rules. Lower rank is higher priority.\n"
},
"state": {
"type": "string",
"description": "The state that the rule is in. A disabled rule cannot be matched. - Choices: `disabled`, `enabled`, `monitor`\n"
}
},
"type": "object",
"required": [
"ifAuthFail",
"ifProcessFail",
"ifUserNotFound",
"name",
"policySetId"
],
"inputProperties": {
"children": {
"type": "string",
"description": "List of child conditions. `condition_type` must be one of `ConditionAndBlock` or `ConditionOrBlock`.\n"
},
"conditionAttributeName": {
"type": "string",
"description": "Dictionary attribute name\n"
},
"conditionAttributeValue": {
"type": "string",
"description": "Attribute value for condition. Value type is specified in dictionary object.\n"
},
"conditionDictionaryName": {
"type": "string",
"description": "Dictionary name\n"
},
"conditionDictionaryValue": {
"type": "string",
"description": "Dictionary value\n"
},
"conditionId": {
"type": "string",
"description": "UUID for condition\n"
},
"conditionIsNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"conditionOperator": {
"type": "string",
"description": "Equality operator - Choices: `contains`, `endsWith`, `equals`, `greaterOrEquals`, `greaterThan`, `in`, `ipEquals`,\n`ipGreaterThan`, `ipLessThan`, `ipNotEquals`, `lessOrEquals`, `lessThan`, `matches`, `notContains`, `notEndsWith`,\n`notEquals`, `notIn`, `notStartsWith`, `startsWith`\n"
},
"conditionType": {
"type": "string",
"description": "Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that\nadditional conditions are present under the children attribute. - Choices: `ConditionAndBlock`, `ConditionAttributes`,\n`ConditionOrBlock`, `ConditionReference`\n"
},
"default": {
"type": "boolean",
"description": "Indicates if this rule is the default one\n"
},
"identitySourceName": {
"type": "string",
"description": "Identity source name from the identity stores\n"
},
"ifAuthFail": {
"type": "string",
"description": "Action to perform when authentication fails such as Bad credentials, disabled user and so on - Choices: `REJECT`,\n`DROP`, `CONTINUE`\n"
},
"ifProcessFail": {
"type": "string",
"description": "Action to perform when ISE is uanble to access the identity database - Choices: `REJECT`, `DROP`, `CONTINUE`\n"
},
"ifUserNotFound": {
"type": "string",
"description": "Action to perform when user is not found in any of identity stores - Choices: `REJECT`, `DROP`, `CONTINUE`\n"
},
"name": {
"type": "string",
"description": "Rule name, [Valid characters are alphanumerics, underscore, hyphen, space, period, parentheses]\n"
},
"policySetId": {
"type": "string",
"description": "Policy set ID\n"
},
"rank": {
"type": "number",
"description": "The rank (priority) in relation to other rules. Lower rank is higher priority.\n"
},
"state": {
"type": "string",
"description": "The state that the rule is in. A disabled rule cannot be matched. - Choices: `disabled`, `enabled`, `monitor`\n"
}
},
"requiredInputs": [
"ifAuthFail",
"ifProcessFail",
"ifUserNotFound",
"policySetId"
],
"stateInputs": {
"description": "Input properties used for looking up and filtering NetworkAccessAuthenticationRule resources.\n",
"properties": {
"children": {
"type": "string",
"description": "List of child conditions. `condition_type` must be one of `ConditionAndBlock` or `ConditionOrBlock`.\n"
},
"conditionAttributeName": {
"type": "string",
"description": "Dictionary attribute name\n"
},
"conditionAttributeValue": {
"type": "string",
"description": "Attribute value for condition. Value type is specified in dictionary object.\n"
},
"conditionDictionaryName": {
"type": "string",
"description": "Dictionary name\n"
},
"conditionDictionaryValue": {
"type": "string",
"description": "Dictionary value\n"
},
"conditionId": {
"type": "string",
"description": "UUID for condition\n"
},
"conditionIsNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"conditionOperator": {
"type": "string",
"description": "Equality operator - Choices: `contains`, `endsWith`, `equals`, `greaterOrEquals`, `greaterThan`, `in`, `ipEquals`,\n`ipGreaterThan`, `ipLessThan`, `ipNotEquals`, `lessOrEquals`, `lessThan`, `matches`, `notContains`, `notEndsWith`,\n`notEquals`, `notIn`, `notStartsWith`, `startsWith`\n"
},
"conditionType": {
"type": "string",
"description": "Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that\nadditional conditions are present under the children attribute. - Choices: `ConditionAndBlock`, `ConditionAttributes`,\n`ConditionOrBlock`, `ConditionReference`\n"
},
"default": {
"type": "boolean",
"description": "Indicates if this rule is the default one\n"
},
"identitySourceName": {
"type": "string",
"description": "Identity source name from the identity stores\n"
},
"ifAuthFail": {
"type": "string",
"description": "Action to perform when authentication fails such as Bad credentials, disabled user and so on - Choices: `REJECT`,\n`DROP`, `CONTINUE`\n"
},
"ifProcessFail": {
"type": "string",
"description": "Action to perform when ISE is uanble to access the identity database - Choices: `REJECT`, `DROP`, `CONTINUE`\n"
},
"ifUserNotFound": {
"type": "string",
"description": "Action to perform when user is not found in any of identity stores - Choices: `REJECT`, `DROP`, `CONTINUE`\n"
},
"name": {
"type": "string",
"description": "Rule name, [Valid characters are alphanumerics, underscore, hyphen, space, period, parentheses]\n"
},
"policySetId": {
"type": "string",
"description": "Policy set ID\n"
},
"rank": {
"type": "number",
"description": "The rank (priority) in relation to other rules. Lower rank is higher priority.\n"
},
"state": {
"type": "string",
"description": "The state that the rule is in. A disabled rule cannot be matched. - Choices: `disabled`, `enabled`, `monitor`\n"
}
},
"type": "object"
}
},
"ise:index/networkAccessAuthorizationExceptionRule:NetworkAccessAuthorizationExceptionRule": {
"properties": {
"children": {
"type": "string",
"description": "List of child conditions. `condition_type` must be one of `ConditionAndBlock` or `ConditionOrBlock`.\n"
},
"conditionAttributeName": {
"type": "string",
"description": "Dictionary attribute name\n"
},
"conditionAttributeValue": {
"type": "string",
"description": "Attribute value for condition. Value type is specified in dictionary object.\n"
},
"conditionDictionaryName": {
"type": "string",
"description": "Dictionary name\n"
},
"conditionDictionaryValue": {
"type": "string",
"description": "Dictionary value\n"
},
"conditionId": {
"type": "string",
"description": "UUID for condition\n"
},
"conditionIsNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"conditionOperator": {
"type": "string",
"description": "Equality operator - Choices: `contains`, `endsWith`, `equals`, `greaterOrEquals`, `greaterThan`, `in`, `ipEquals`,\n`ipGreaterThan`, `ipLessThan`, `ipNotEquals`, `lessOrEquals`, `lessThan`, `matches`, `notContains`, `notEndsWith`,\n`notEquals`, `notIn`, `notStartsWith`, `startsWith`\n"
},
"conditionType": {
"type": "string",
"description": "Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that\nadditional conditions are present under the children attribute. - Choices: `ConditionAndBlock`, `ConditionAttributes`,\n`ConditionOrBlock`, `ConditionReference`\n"
},
"default": {
"type": "boolean",
"description": "Indicates if this rule is the default one\n"
},
"name": {
"type": "string",
"description": "Rule name, [Valid characters are alphanumerics, underscore, hyphen, space, period, parentheses]\n"
},
"policySetId": {
"type": "string",
"description": "Policy set ID\n"
},
"profiles": {
"type": "array",
"items": {
"type": "string"
},
"description": "The authorization profile(s)\n"
},
"rank": {
"type": "number",
"description": "The rank (priority) in relation to other rules. Lower rank is higher priority.\n"
},
"securityGroup": {
"type": "string",
"description": "Security group used in authorization policies\n"
},
"state": {
"type": "string",
"description": "The state that the rule is in. A disabled rule cannot be matched. - Choices: `disabled`, `enabled`, `monitor`\n"
}
},
"type": "object",
"required": [
"name",
"policySetId"
],
"inputProperties": {
"children": {
"type": "string",
"description": "List of child conditions. `condition_type` must be one of `ConditionAndBlock` or `ConditionOrBlock`.\n"
},
"conditionAttributeName": {
"type": "string",
"description": "Dictionary attribute name\n"
},
"conditionAttributeValue": {
"type": "string",
"description": "Attribute value for condition. Value type is specified in dictionary object.\n"
},
"conditionDictionaryName": {
"type": "string",
"description": "Dictionary name\n"
},
"conditionDictionaryValue": {
"type": "string",
"description": "Dictionary value\n"
},
"conditionId": {
"type": "string",
"description": "UUID for condition\n"
},
"conditionIsNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"conditionOperator": {
"type": "string",
"description": "Equality operator - Choices: `contains`, `endsWith`, `equals`, `greaterOrEquals`, `greaterThan`, `in`, `ipEquals`,\n`ipGreaterThan`, `ipLessThan`, `ipNotEquals`, `lessOrEquals`, `lessThan`, `matches`, `notContains`, `notEndsWith`,\n`notEquals`, `notIn`, `notStartsWith`, `startsWith`\n"
},
"conditionType": {
"type": "string",
"description": "Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that\nadditional conditions are present under the children attribute. - Choices: `ConditionAndBlock`, `ConditionAttributes`,\n`ConditionOrBlock`, `ConditionReference`\n"
},
"default": {
"type": "boolean",
"description": "Indicates if this rule is the default one\n"
},
"name": {
"type": "string",
"description": "Rule name, [Valid characters are alphanumerics, underscore, hyphen, space, period, parentheses]\n"
},
"policySetId": {
"type": "string",
"description": "Policy set ID\n"
},
"profiles": {
"type": "array",
"items": {
"type": "string"
},
"description": "The authorization profile(s)\n"
},
"rank": {
"type": "number",
"description": "The rank (priority) in relation to other rules. Lower rank is higher priority.\n"
},
"securityGroup": {
"type": "string",
"description": "Security group used in authorization policies\n"
},
"state": {
"type": "string",
"description": "The state that the rule is in. A disabled rule cannot be matched. - Choices: `disabled`, `enabled`, `monitor`\n"
}
},
"requiredInputs": [
"policySetId"
],
"stateInputs": {
"description": "Input properties used for looking up and filtering NetworkAccessAuthorizationExceptionRule resources.\n",
"properties": {
"children": {
"type": "string",
"description": "List of child conditions. `condition_type` must be one of `ConditionAndBlock` or `ConditionOrBlock`.\n"
},
"conditionAttributeName": {
"type": "string",
"description": "Dictionary attribute name\n"
},
"conditionAttributeValue": {
"type": "string",
"description": "Attribute value for condition. Value type is specified in dictionary object.\n"
},
"conditionDictionaryName": {
"type": "string",
"description": "Dictionary name\n"
},
"conditionDictionaryValue": {
"type": "string",
"description": "Dictionary value\n"
},
"conditionId": {
"type": "string",
"description": "UUID for condition\n"
},
"conditionIsNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"conditionOperator": {
"type": "string",
"description": "Equality operator - Choices: `contains`, `endsWith`, `equals`, `greaterOrEquals`, `greaterThan`, `in`, `ipEquals`,\n`ipGreaterThan`, `ipLessThan`, `ipNotEquals`, `lessOrEquals`, `lessThan`, `matches`, `notContains`, `notEndsWith`,\n`notEquals`, `notIn`, `notStartsWith`, `startsWith`\n"
},
"conditionType": {
"type": "string",
"description": "Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that\nadditional conditions are present under the children attribute. - Choices: `ConditionAndBlock`, `ConditionAttributes`,\n`ConditionOrBlock`, `ConditionReference`\n"
},
"default": {
"type": "boolean",
"description": "Indicates if this rule is the default one\n"
},
"name": {
"type": "string",
"description": "Rule name, [Valid characters are alphanumerics, underscore, hyphen, space, period, parentheses]\n"
},
"policySetId": {
"type": "string",
"description": "Policy set ID\n"
},
"profiles": {
"type": "array",
"items": {
"type": "string"
},
"description": "The authorization profile(s)\n"
},
"rank": {
"type": "number",
"description": "The rank (priority) in relation to other rules. Lower rank is higher priority.\n"
},
"securityGroup": {
"type": "string",
"description": "Security group used in authorization policies\n"
},
"state": {
"type": "string",
"description": "The state that the rule is in. A disabled rule cannot be matched. - Choices: `disabled`, `enabled`, `monitor`\n"
}
},
"type": "object"
}
},
"ise:index/networkAccessAuthorizationGlobalExceptionRule:NetworkAccessAuthorizationGlobalExceptionRule": {
"properties": {
"children": {
"type": "string",
"description": "List of child conditions. `condition_type` must be one of `ConditionAndBlock` or `ConditionOrBlock`.\n"
},
"conditionAttributeName": {
"type": "string",
"description": "Dictionary attribute name\n"
},
"conditionAttributeValue": {
"type": "string",
"description": "Attribute value for condition. Value type is specified in dictionary object.\n"
},
"conditionDictionaryName": {
"type": "string",
"description": "Dictionary name\n"
},
"conditionDictionaryValue": {
"type": "string",
"description": "Dictionary value\n"
},
"conditionId": {
"type": "string",
"description": "UUID for condition\n"
},
"conditionIsNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"conditionOperator": {
"type": "string",
"description": "Equality operator - Choices: `contains`, `endsWith`, `equals`, `greaterOrEquals`, `greaterThan`, `in`, `ipEquals`,\n`ipGreaterThan`, `ipLessThan`, `ipNotEquals`, `lessOrEquals`, `lessThan`, `matches`, `notContains`, `notEndsWith`,\n`notEquals`, `notIn`, `notStartsWith`, `startsWith`\n"
},
"conditionType": {
"type": "string",
"description": "Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that\nadditional conditions are present under the children attribute. - Choices: `ConditionAndBlock`, `ConditionAttributes`,\n`ConditionOrBlock`, `ConditionReference`\n"
},
"default": {
"type": "boolean",
"description": "Indicates if this rule is the default one\n"
},
"name": {
"type": "string",
"description": "Rule name, [Valid characters are alphanumerics, underscore, hyphen, space, period, parentheses]\n"
},
"profiles": {
"type": "array",
"items": {
"type": "string"
},
"description": "The authorization profile(s)\n"
},
"rank": {
"type": "number",
"description": "The rank (priority) in relation to other rules. Lower rank is higher priority.\n"
},
"securityGroup": {
"type": "string",
"description": "Security group used in authorization policies\n"
},
"state": {
"type": "string",
"description": "The state that the rule is in. A disabled rule cannot be matched. - Choices: `disabled`, `enabled`, `monitor`\n"
}
},
"type": "object",
"required": [
"name"
],
"inputProperties": {
"children": {
"type": "string",
"description": "List of child conditions. `condition_type` must be one of `ConditionAndBlock` or `ConditionOrBlock`.\n"
},
"conditionAttributeName": {
"type": "string",
"description": "Dictionary attribute name\n"
},
"conditionAttributeValue": {
"type": "string",
"description": "Attribute value for condition. Value type is specified in dictionary object.\n"
},
"conditionDictionaryName": {
"type": "string",
"description": "Dictionary name\n"
},
"conditionDictionaryValue": {
"type": "string",
"description": "Dictionary value\n"
},
"conditionId": {
"type": "string",
"description": "UUID for condition\n"
},
"conditionIsNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"conditionOperator": {
"type": "string",
"description": "Equality operator - Choices: `contains`, `endsWith`, `equals`, `greaterOrEquals`, `greaterThan`, `in`, `ipEquals`,\n`ipGreaterThan`, `ipLessThan`, `ipNotEquals`, `lessOrEquals`, `lessThan`, `matches`, `notContains`, `notEndsWith`,\n`notEquals`, `notIn`, `notStartsWith`, `startsWith`\n"
},
"conditionType": {
"type": "string",
"description": "Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that\nadditional conditions are present under the children attribute. - Choices: `ConditionAndBlock`, `ConditionAttributes`,\n`ConditionOrBlock`, `ConditionReference`\n"
},
"default": {
"type": "boolean",
"description": "Indicates if this rule is the default one\n"
},
"name": {
"type": "string",
"description": "Rule name, [Valid characters are alphanumerics, underscore, hyphen, space, period, parentheses]\n"
},
"profiles": {
"type": "array",
"items": {
"type": "string"
},
"description": "The authorization profile(s)\n"
},
"rank": {
"type": "number",
"description": "The rank (priority) in relation to other rules. Lower rank is higher priority.\n"
},
"securityGroup": {
"type": "string",
"description": "Security group used in authorization policies\n"
},
"state": {
"type": "string",
"description": "The state that the rule is in. A disabled rule cannot be matched. - Choices: `disabled`, `enabled`, `monitor`\n"
}
},
"stateInputs": {
"description": "Input properties used for looking up and filtering NetworkAccessAuthorizationGlobalExceptionRule resources.\n",
"properties": {
"children": {
"type": "string",
"description": "List of child conditions. `condition_type` must be one of `ConditionAndBlock` or `ConditionOrBlock`.\n"
},
"conditionAttributeName": {
"type": "string",
"description": "Dictionary attribute name\n"
},
"conditionAttributeValue": {
"type": "string",
"description": "Attribute value for condition. Value type is specified in dictionary object.\n"
},
"conditionDictionaryName": {
"type": "string",
"description": "Dictionary name\n"
},
"conditionDictionaryValue": {
"type": "string",
"description": "Dictionary value\n"
},
"conditionId": {
"type": "string",
"description": "UUID for condition\n"
},
"conditionIsNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"conditionOperator": {
"type": "string",
"description": "Equality operator - Choices: `contains`, `endsWith`, `equals`, `greaterOrEquals`, `greaterThan`, `in`, `ipEquals`,\n`ipGreaterThan`, `ipLessThan`, `ipNotEquals`, `lessOrEquals`, `lessThan`, `matches`, `notContains`, `notEndsWith`,\n`notEquals`, `notIn`, `notStartsWith`, `startsWith`\n"
},
"conditionType": {
"type": "string",
"description": "Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that\nadditional conditions are present under the children attribute. - Choices: `ConditionAndBlock`, `ConditionAttributes`,\n`ConditionOrBlock`, `ConditionReference`\n"
},
"default": {
"type": "boolean",
"description": "Indicates if this rule is the default one\n"
},
"name": {
"type": "string",
"description": "Rule name, [Valid characters are alphanumerics, underscore, hyphen, space, period, parentheses]\n"
},
"profiles": {
"type": "array",
"items": {
"type": "string"
},
"description": "The authorization profile(s)\n"
},
"rank": {
"type": "number",
"description": "The rank (priority) in relation to other rules. Lower rank is higher priority.\n"
},
"securityGroup": {
"type": "string",
"description": "Security group used in authorization policies\n"
},
"state": {
"type": "string",
"description": "The state that the rule is in. A disabled rule cannot be matched. - Choices: `disabled`, `enabled`, `monitor`\n"
}
},
"type": "object"
}
},
"ise:index/networkAccessAuthorizationRule:NetworkAccessAuthorizationRule": {
"properties": {
"children": {
"type": "string",
"description": "List of child conditions. `condition_type` must be one of `ConditionAndBlock` or `ConditionOrBlock`.\n"
},
"conditionAttributeName": {
"type": "string",
"description": "Dictionary attribute name\n"
},
"conditionAttributeValue": {
"type": "string",
"description": "Attribute value for condition. Value type is specified in dictionary object.\n"
},
"conditionDictionaryName": {
"type": "string",
"description": "Dictionary name\n"
},
"conditionDictionaryValue": {
"type": "string",
"description": "Dictionary value\n"
},
"conditionId": {
"type": "string",
"description": "UUID for condition\n"
},
"conditionIsNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"conditionOperator": {
"type": "string",
"description": "Equality operator - Choices: `contains`, `endsWith`, `equals`, `greaterOrEquals`, `greaterThan`, `in`, `ipEquals`,\n`ipGreaterThan`, `ipLessThan`, `ipNotEquals`, `lessOrEquals`, `lessThan`, `matches`, `notContains`, `notEndsWith`,\n`notEquals`, `notIn`, `notStartsWith`, `startsWith`\n"
},
"conditionType": {
"type": "string",
"description": "Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that\nadditional conditions are present under the children attribute. - Choices: `ConditionAndBlock`, `ConditionAttributes`,\n`ConditionOrBlock`, `ConditionReference`\n"
},
"default": {
"type": "boolean",
"description": "Indicates if this rule is the default one\n"
},
"name": {
"type": "string",
"description": "Rule name, [Valid characters are alphanumerics, underscore, hyphen, space, period, parentheses]\n"
},
"policySetId": {
"type": "string",
"description": "Policy set ID\n"
},
"profiles": {
"type": "array",
"items": {
"type": "string"
},
"description": "The authorization profile(s)\n"
},
"rank": {
"type": "number",
"description": "The rank (priority) in relation to other rules. Lower rank is higher priority.\n"
},
"securityGroup": {
"type": "string",
"description": "Security group used in authorization policies\n"
},
"state": {
"type": "string",
"description": "The state that the rule is in. A disabled rule cannot be matched. - Choices: `disabled`, `enabled`, `monitor`\n"
}
},
"type": "object",
"required": [
"name",
"policySetId"
],
"inputProperties": {
"children": {
"type": "string",
"description": "List of child conditions. `condition_type` must be one of `ConditionAndBlock` or `ConditionOrBlock`.\n"
},
"conditionAttributeName": {
"type": "string",
"description": "Dictionary attribute name\n"
},
"conditionAttributeValue": {
"type": "string",
"description": "Attribute value for condition. Value type is specified in dictionary object.\n"
},
"conditionDictionaryName": {
"type": "string",
"description": "Dictionary name\n"
},
"conditionDictionaryValue": {
"type": "string",
"description": "Dictionary value\n"
},
"conditionId": {
"type": "string",
"description": "UUID for condition\n"
},
"conditionIsNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"conditionOperator": {
"type": "string",
"description": "Equality operator - Choices: `contains`, `endsWith`, `equals`, `greaterOrEquals`, `greaterThan`, `in`, `ipEquals`,\n`ipGreaterThan`, `ipLessThan`, `ipNotEquals`, `lessOrEquals`, `lessThan`, `matches`, `notContains`, `notEndsWith`,\n`notEquals`, `notIn`, `notStartsWith`, `startsWith`\n"
},
"conditionType": {
"type": "string",
"description": "Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that\nadditional conditions are present under the children attribute. - Choices: `ConditionAndBlock`, `ConditionAttributes`,\n`ConditionOrBlock`, `ConditionReference`\n"
},
"default": {
"type": "boolean",
"description": "Indicates if this rule is the default one\n"
},
"name": {
"type": "string",
"description": "Rule name, [Valid characters are alphanumerics, underscore, hyphen, space, period, parentheses]\n"
},
"policySetId": {
"type": "string",
"description": "Policy set ID\n"
},
"profiles": {
"type": "array",
"items": {
"type": "string"
},
"description": "The authorization profile(s)\n"
},
"rank": {
"type": "number",
"description": "The rank (priority) in relation to other rules. Lower rank is higher priority.\n"
},
"securityGroup": {
"type": "string",
"description": "Security group used in authorization policies\n"
},
"state": {
"type": "string",
"description": "The state that the rule is in. A disabled rule cannot be matched. - Choices: `disabled`, `enabled`, `monitor`\n"
}
},
"requiredInputs": [
"policySetId"
],
"stateInputs": {
"description": "Input properties used for looking up and filtering NetworkAccessAuthorizationRule resources.\n",
"properties": {
"children": {
"type": "string",
"description": "List of child conditions. `condition_type` must be one of `ConditionAndBlock` or `ConditionOrBlock`.\n"
},
"conditionAttributeName": {
"type": "string",
"description": "Dictionary attribute name\n"
},
"conditionAttributeValue": {
"type": "string",
"description": "Attribute value for condition. Value type is specified in dictionary object.\n"
},
"conditionDictionaryName": {
"type": "string",
"description": "Dictionary name\n"
},
"conditionDictionaryValue": {
"type": "string",
"description": "Dictionary value\n"
},
"conditionId": {
"type": "string",
"description": "UUID for condition\n"
},
"conditionIsNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"conditionOperator": {
"type": "string",
"description": "Equality operator - Choices: `contains`, `endsWith`, `equals`, `greaterOrEquals`, `greaterThan`, `in`, `ipEquals`,\n`ipGreaterThan`, `ipLessThan`, `ipNotEquals`, `lessOrEquals`, `lessThan`, `matches`, `notContains`, `notEndsWith`,\n`notEquals`, `notIn`, `notStartsWith`, `startsWith`\n"
},
"conditionType": {
"type": "string",
"description": "Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that\nadditional conditions are present under the children attribute. - Choices: `ConditionAndBlock`, `ConditionAttributes`,\n`ConditionOrBlock`, `ConditionReference`\n"
},
"default": {
"type": "boolean",
"description": "Indicates if this rule is the default one\n"
},
"name": {
"type": "string",
"description": "Rule name, [Valid characters are alphanumerics, underscore, hyphen, space, period, parentheses]\n"
},
"policySetId": {
"type": "string",
"description": "Policy set ID\n"
},
"profiles": {
"type": "array",
"items": {
"type": "string"
},
"description": "The authorization profile(s)\n"
},
"rank": {
"type": "number",
"description": "The rank (priority) in relation to other rules. Lower rank is higher priority.\n"
},
"securityGroup": {
"type": "string",
"description": "Security group used in authorization policies\n"
},
"state": {
"type": "string",
"description": "The state that the rule is in. A disabled rule cannot be matched. - Choices: `disabled`, `enabled`, `monitor`\n"
}
},
"type": "object"
}
},
"ise:index/networkAccessCondition:NetworkAccessCondition": {
"properties": {
"attributeName": {
"type": "string",
"description": "Dictionary attribute name\n"
},
"attributeValue": {
"type": "string",
"description": "Attribute value for condition. Value type is specified in dictionary object.\n"
},
"children": {
"type": "string",
"description": "List of child conditions. `condition_type` must be one of `LibraryConditionAndBlock` or `LibraryConditionOrBlock`.\n"
},
"conditionType": {
"type": "string",
"description": "Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that\nadditional conditions are present under the children attribute. - Choices: `LibraryConditionAndBlock`,\n`LibraryConditionAttributes`, `LibraryConditionOrBlock`\n"
},
"description": {
"type": "string",
"description": "Condition description\n"
},
"dictionaryName": {
"type": "string",
"description": "Dictionary name\n"
},
"dictionaryValue": {
"type": "string",
"description": "Dictionary value\n"
},
"isNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"name": {
"type": "string",
"description": "Condition name\n"
},
"operator": {
"type": "string",
"description": "Equality operator - Choices: `contains`, `endsWith`, `equals`, `greaterOrEquals`, `greaterThan`, `in`, `ipEquals`,\n`ipGreaterThan`, `ipLessThan`, `ipNotEquals`, `lessOrEquals`, `lessThan`, `matches`, `notContains`, `notEndsWith`,\n`notEquals`, `notIn`, `notStartsWith`, `startsWith`\n"
}
},
"type": "object",
"required": [
"conditionType",
"name"
],
"inputProperties": {
"attributeName": {
"type": "string",
"description": "Dictionary attribute name\n"
},
"attributeValue": {
"type": "string",
"description": "Attribute value for condition. Value type is specified in dictionary object.\n"
},
"children": {
"type": "string",
"description": "List of child conditions. `condition_type` must be one of `LibraryConditionAndBlock` or `LibraryConditionOrBlock`.\n"
},
"conditionType": {
"type": "string",
"description": "Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that\nadditional conditions are present under the children attribute. - Choices: `LibraryConditionAndBlock`,\n`LibraryConditionAttributes`, `LibraryConditionOrBlock`\n"
},
"description": {
"type": "string",
"description": "Condition description\n"
},
"dictionaryName": {
"type": "string",
"description": "Dictionary name\n"
},
"dictionaryValue": {
"type": "string",
"description": "Dictionary value\n"
},
"isNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"name": {
"type": "string",
"description": "Condition name\n"
},
"operator": {
"type": "string",
"description": "Equality operator - Choices: `contains`, `endsWith`, `equals`, `greaterOrEquals`, `greaterThan`, `in`, `ipEquals`,\n`ipGreaterThan`, `ipLessThan`, `ipNotEquals`, `lessOrEquals`, `lessThan`, `matches`, `notContains`, `notEndsWith`,\n`notEquals`, `notIn`, `notStartsWith`, `startsWith`\n"
}
},
"requiredInputs": [
"conditionType"
],
"stateInputs": {
"description": "Input properties used for looking up and filtering NetworkAccessCondition resources.\n",
"properties": {
"attributeName": {
"type": "string",
"description": "Dictionary attribute name\n"
},
"attributeValue": {
"type": "string",
"description": "Attribute value for condition. Value type is specified in dictionary object.\n"
},
"children": {
"type": "string",
"description": "List of child conditions. `condition_type` must be one of `LibraryConditionAndBlock` or `LibraryConditionOrBlock`.\n"
},
"conditionType": {
"type": "string",
"description": "Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that\nadditional conditions are present under the children attribute. - Choices: `LibraryConditionAndBlock`,\n`LibraryConditionAttributes`, `LibraryConditionOrBlock`\n"
},
"description": {
"type": "string",
"description": "Condition description\n"
},
"dictionaryName": {
"type": "string",
"description": "Dictionary name\n"
},
"dictionaryValue": {
"type": "string",
"description": "Dictionary value\n"
},
"isNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"name": {
"type": "string",
"description": "Condition name\n"
},
"operator": {
"type": "string",
"description": "Equality operator - Choices: `contains`, `endsWith`, `equals`, `greaterOrEquals`, `greaterThan`, `in`, `ipEquals`,\n`ipGreaterThan`, `ipLessThan`, `ipNotEquals`, `lessOrEquals`, `lessThan`, `matches`, `notContains`, `notEndsWith`,\n`notEquals`, `notIn`, `notStartsWith`, `startsWith`\n"
}
},
"type": "object"
}
},
"ise:index/networkAccessDictionary:NetworkAccessDictionary": {
"properties": {
"description": {
"type": "string",
"description": "The description of the dictionary\n"
},
"dictionaryAttrType": {
"type": "string",
"description": "The dictionary attribute type - Choices: `ENTITY_ATTR`, `MSG_ATTR`, `PIP_ATTR`\n"
},
"name": {
"type": "string",
"description": "The dictionary name\n"
},
"version": {
"type": "string",
"description": "The version of the dictionary\n"
}
},
"type": "object",
"required": [
"dictionaryAttrType",
"name",
"version"
],
"inputProperties": {
"description": {
"type": "string",
"description": "The description of the dictionary\n"
},
"dictionaryAttrType": {
"type": "string",
"description": "The dictionary attribute type - Choices: `ENTITY_ATTR`, `MSG_ATTR`, `PIP_ATTR`\n"
},
"name": {
"type": "string",
"description": "The dictionary name\n"
},
"version": {
"type": "string",
"description": "The version of the dictionary\n"
}
},
"requiredInputs": [
"dictionaryAttrType",
"version"
],
"stateInputs": {
"description": "Input properties used for looking up and filtering NetworkAccessDictionary resources.\n",
"properties": {
"description": {
"type": "string",
"description": "The description of the dictionary\n"
},
"dictionaryAttrType": {
"type": "string",
"description": "The dictionary attribute type - Choices: `ENTITY_ATTR`, `MSG_ATTR`, `PIP_ATTR`\n"
},
"name": {
"type": "string",
"description": "The dictionary name\n"
},
"version": {
"type": "string",
"description": "The version of the dictionary\n"
}
},
"type": "object"
}
},
"ise:index/networkAccessPolicySet:NetworkAccessPolicySet": {
"properties": {
"children": {
"type": "string",
"description": "List of child conditions. `condition_type` must be one of `ConditionAndBlock` or `ConditionOrBlock`.\n"
},
"conditionAttributeName": {
"type": "string",
"description": "Dictionary attribute name\n"
},
"conditionAttributeValue": {
"type": "string",
"description": "Attribute value for condition. Value type is specified in dictionary object.\n"
},
"conditionDictionaryName": {
"type": "string",
"description": "Dictionary name\n"
},
"conditionDictionaryValue": {
"type": "string",
"description": "Dictionary value\n"
},
"conditionId": {
"type": "string",
"description": "UUID for condition\n"
},
"conditionIsNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"conditionOperator": {
"type": "string",
"description": "Equality operator - Choices: `contains`, `endsWith`, `equals`, `greaterOrEquals`, `greaterThan`, `in`, `ipEquals`,\n`ipGreaterThan`, `ipLessThan`, `ipNotEquals`, `lessOrEquals`, `lessThan`, `matches`, `notContains`, `notEndsWith`,\n`notEquals`, `notIn`, `notStartsWith`, `startsWith`\n"
},
"conditionType": {
"type": "string",
"description": "Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that\nadditional conditions are present under the children attribute. - Choices: `ConditionAndBlock`, `ConditionAttributes`,\n`ConditionOrBlock`, `ConditionReference`\n"
},
"default": {
"type": "boolean",
"description": "Indicates if this policy set is the default one\n"
},
"description": {
"type": "string",
"description": "The description of the policy set\n"
},
"isProxy": {
"type": "boolean",
"description": "Flag which indicates if the policy set service is of type 'Proxy Sequence' or 'Allowed Protocols'\n"
},
"name": {
"type": "string",
"description": "Given name for the policy set, [Valid characters are alphanumerics, underscore, hyphen, space, period, parentheses]\n"
},
"rank": {
"type": "number",
"description": "The rank (priority) in relation to other policy sets. Lower rank is higher priority.\n"
},
"serviceName": {
"type": "string",
"description": "Policy set service identifier. 'Allowed Protocols' or 'Server Sequence'.\n"
},
"state": {
"type": "string",
"description": "The state that the policy set is in. A disabled policy set cannot be matched. - Choices: `disabled`, `enabled`,\n`monitor`\n"
}
},
"type": "object",
"required": [
"description",
"name",
"rank",
"serviceName"
],
"inputProperties": {
"children": {
"type": "string",
"description": "List of child conditions. `condition_type` must be one of `ConditionAndBlock` or `ConditionOrBlock`.\n"
},
"conditionAttributeName": {
"type": "string",
"description": "Dictionary attribute name\n"
},
"conditionAttributeValue": {
"type": "string",
"description": "Attribute value for condition. Value type is specified in dictionary object.\n"
},
"conditionDictionaryName": {
"type": "string",
"description": "Dictionary name\n"
},
"conditionDictionaryValue": {
"type": "string",
"description": "Dictionary value\n"
},
"conditionId": {
"type": "string",
"description": "UUID for condition\n"
},
"conditionIsNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"conditionOperator": {
"type": "string",
"description": "Equality operator - Choices: `contains`, `endsWith`, `equals`, `greaterOrEquals`, `greaterThan`, `in`, `ipEquals`,\n`ipGreaterThan`, `ipLessThan`, `ipNotEquals`, `lessOrEquals`, `lessThan`, `matches`, `notContains`, `notEndsWith`,\n`notEquals`, `notIn`, `notStartsWith`, `startsWith`\n"
},
"conditionType": {
"type": "string",
"description": "Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that\nadditional conditions are present under the children attribute. - Choices: `ConditionAndBlock`, `ConditionAttributes`,\n`ConditionOrBlock`, `ConditionReference`\n"
},
"default": {
"type": "boolean",
"description": "Indicates if this policy set is the default one\n"
},
"description": {
"type": "string",
"description": "The description of the policy set\n"
},
"isProxy": {
"type": "boolean",
"description": "Flag which indicates if the policy set service is of type 'Proxy Sequence' or 'Allowed Protocols'\n"
},
"name": {
"type": "string",
"description": "Given name for the policy set, [Valid characters are alphanumerics, underscore, hyphen, space, period, parentheses]\n"
},
"rank": {
"type": "number",
"description": "The rank (priority) in relation to other policy sets. Lower rank is higher priority.\n"
},
"serviceName": {
"type": "string",
"description": "Policy set service identifier. 'Allowed Protocols' or 'Server Sequence'.\n"
},
"state": {
"type": "string",
"description": "The state that the policy set is in. A disabled policy set cannot be matched. - Choices: `disabled`, `enabled`,\n`monitor`\n"
}
},
"requiredInputs": [
"serviceName"
],
"stateInputs": {
"description": "Input properties used for looking up and filtering NetworkAccessPolicySet resources.\n",
"properties": {
"children": {
"type": "string",
"description": "List of child conditions. `condition_type` must be one of `ConditionAndBlock` or `ConditionOrBlock`.\n"
},
"conditionAttributeName": {
"type": "string",
"description": "Dictionary attribute name\n"
},
"conditionAttributeValue": {
"type": "string",
"description": "Attribute value for condition. Value type is specified in dictionary object.\n"
},
"conditionDictionaryName": {
"type": "string",
"description": "Dictionary name\n"
},
"conditionDictionaryValue": {
"type": "string",
"description": "Dictionary value\n"
},
"conditionId": {
"type": "string",
"description": "UUID for condition\n"
},
"conditionIsNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"conditionOperator": {
"type": "string",
"description": "Equality operator - Choices: `contains`, `endsWith`, `equals`, `greaterOrEquals`, `greaterThan`, `in`, `ipEquals`,\n`ipGreaterThan`, `ipLessThan`, `ipNotEquals`, `lessOrEquals`, `lessThan`, `matches`, `notContains`, `notEndsWith`,\n`notEquals`, `notIn`, `notStartsWith`, `startsWith`\n"
},
"conditionType": {
"type": "string",
"description": "Indicates whether the record is the condition itself or a logical aggregation. Logical aggreation indicates that\nadditional conditions are present under the children attribute. - Choices: `ConditionAndBlock`, `ConditionAttributes`,\n`ConditionOrBlock`, `ConditionReference`\n"
},
"default": {
"type": "boolean",
"description": "Indicates if this policy set is the default one\n"
},
"description": {
"type": "string",
"description": "The description of the policy set\n"
},
"isProxy": {
"type": "boolean",
"description": "Flag which indicates if the policy set service is of type 'Proxy Sequence' or 'Allowed Protocols'\n"
},
"name": {
"type": "string",
"description": "Given name for the policy set, [Valid characters are alphanumerics, underscore, hyphen, space, period, parentheses]\n"
},
"rank": {
"type": "number",
"description": "The rank (priority) in relation to other policy sets. Lower rank is higher priority.\n"
},
"serviceName": {
"type": "string",
"description": "Policy set service identifier. 'Allowed Protocols' or 'Server Sequence'.\n"
},
"state": {
"type": "string",
"description": "The state that the policy set is in. A disabled policy set cannot be matched. - Choices: `disabled`, `enabled`,\n`monitor`\n"
}
},
"type": "object"
}
},
"ise:index/networkAccessTimeAndDateCondition:NetworkAccessTimeAndDateCondition": {
"properties": {
"description": {
"type": "string",
"description": "Condition description\n"
},
"endDate": {
"type": "string",
"description": "End date\n"
},
"endTime": {
"type": "string",
"description": "End time\n"
},
"exceptionEndDate": {
"type": "string",
"description": "Exception end date\n"
},
"exceptionEndTime": {
"type": "string",
"description": "Exception end time\n"
},
"exceptionStartDate": {
"type": "string",
"description": "Exception start date\n"
},
"exceptionStartTime": {
"type": "string",
"description": "Exception start time\n"
},
"isNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"name": {
"type": "string",
"description": "Condition name\n"
},
"startDate": {
"type": "string",
"description": "Start date\n"
},
"startTime": {
"type": "string",
"description": "Start time\n"
},
"weekDays": {
"type": "array",
"items": {
"type": "string"
},
"description": "Defines for which days this condition will be matched. List of weekdays - `Monday`, `Tuesday`, `Wednesday`, `Thursday`,\n`Friday`, `Saturday`, `Sunday`. Default - List of all week days.\n"
},
"weekDaysExceptions": {
"type": "array",
"items": {
"type": "string"
},
"description": "Defines for which days this condition will NOT be matched. List of weekdays - `Monday`, `Tuesday`, `Wednesday`,\n`Thursday`, `Friday`, `Saturday`, `Sunday`.\n"
}
},
"type": "object",
"required": [
"name"
],
"inputProperties": {
"description": {
"type": "string",
"description": "Condition description\n"
},
"endDate": {
"type": "string",
"description": "End date\n"
},
"endTime": {
"type": "string",
"description": "End time\n"
},
"exceptionEndDate": {
"type": "string",
"description": "Exception end date\n"
},
"exceptionEndTime": {
"type": "string",
"description": "Exception end time\n"
},
"exceptionStartDate": {
"type": "string",
"description": "Exception start date\n"
},
"exceptionStartTime": {
"type": "string",
"description": "Exception start time\n"
},
"isNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"name": {
"type": "string",
"description": "Condition name\n"
},
"startDate": {
"type": "string",
"description": "Start date\n"
},
"startTime": {
"type": "string",
"description": "Start time\n"
},
"weekDays": {
"type": "array",
"items": {
"type": "string"
},
"description": "Defines for which days this condition will be matched. List of weekdays - `Monday`, `Tuesday`, `Wednesday`, `Thursday`,\n`Friday`, `Saturday`, `Sunday`. Default - List of all week days.\n"
},
"weekDaysExceptions": {
"type": "array",
"items": {
"type": "string"
},
"description": "Defines for which days this condition will NOT be matched. List of weekdays - `Monday`, `Tuesday`, `Wednesday`,\n`Thursday`, `Friday`, `Saturday`, `Sunday`.\n"
}
},
"stateInputs": {
"description": "Input properties used for looking up and filtering NetworkAccessTimeAndDateCondition resources.\n",
"properties": {
"description": {
"type": "string",
"description": "Condition description\n"
},
"endDate": {
"type": "string",
"description": "End date\n"
},
"endTime": {
"type": "string",
"description": "End time\n"
},
"exceptionEndDate": {
"type": "string",
"description": "Exception end date\n"
},
"exceptionEndTime": {
"type": "string",
"description": "Exception end time\n"
},
"exceptionStartDate": {
"type": "string",
"description": "Exception start date\n"
},
"exceptionStartTime": {
"type": "string",
"description": "Exception start time\n"
},
"isNegate": {
"type": "boolean",
"description": "Indicates whereas this condition is in negate mode\n"
},
"name": {
"type": "string",
"description": "Condition name\n"
},
"startDate": {
"type": "string",
"description": "Start date\n"
},
"startTime": {
"type": "string",
"description": "Start time\n"
},
"weekDays": {
"type": "array",
"items": {
"type": "string"
},
"description": "Defines for which days this condition will be matched. List of weekdays - `Monday`, `Tuesday`, `Wednesday`, `Thursday`,\n`Friday`, `Saturday`, `Sunday`. Default - List of all week days.\n"
},
"weekDaysExceptions": {
"type": "array",
"items": {
"type": "string"
},
"description": "Defines for which days this condition will NOT be matched. List of weekdays - `Monday`, `Tuesday`, `Wednesday`,\n`Thursday`, `Friday`, `Saturday`, `Sunday`.\n"
}
},
"type": "object"
}
},
"ise:index/networkDevice:NetworkDevice": {
"properties": {
"authenticationDtlsRequired": {
"type": "boolean",
"description": "Enforce use of DTLS\n"
},
"authenticationEnableKeyWrap": {
"type": "boolean",
"description": "Enable key wrap\n"
},
"authenticationEnableMultiSecret": {
"type": "boolean",
"description": "Enable multiple RADIUS shared secrets\n"
},
"authenticationEncryptionKey": {
"type": "string",
"description": "Encryption key\n"
},
"authenticationEncryptionKeyFormat": {
"type": "string",
"description": "Key input format - Choices: `ASCII`, `HEXADECIMAL`\n"
},
"authenticationMessageAuthenticatorCodeKey": {
"type": "string",
"description": "Message authenticator code key\n"
},
"authenticationNetworkProtocol": {
"type": "string",
"description": "Network protocol - Choices: `RADIUS`, `TACACS_PLUS`\n"
},
"authenticationRadiusSharedSecret": {
"type": "string",
"description": "RADIUS shared secret\n"
},
"authenticationSecondRadiusSharedSecret": {
"type": "string",
"description": "Second RADIUS shared secret\n"
},
"coaPort": {
"type": "number",
"description": "CoA port - Default value: `1700`\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"dtlsDnsName": {
"type": "string",
"description": "This value is used to verify the client identity contained in the X.509 RADIUS/DTLS client certificate\n"
},
"ips": {
"type": "string",
"description": "List of IP subnets\n"
},
"modelName": {
"type": "string",
"description": "Model name\n"
},
"name": {
"type": "string",
"description": "The name of the network device\n"
},
"networkDeviceGroups": {
"type": "array",
"items": {
"type": "string"
},
"description": "List of network device groups, e.g. `Device Type#All Device Types#ACCESS`\n"
},
"profileName": {
"type": "string",
"description": "Profile name - Default value: `Cisco`\n"
},
"snmpLinkTrapQuery": {
"type": "boolean",
"description": "SNMP link Trap Query\n"
},
"snmpMacTrapQuery": {
"type": "boolean",
"description": "SNMP MAC Trap Query\n"
},
"snmpOriginatingPolicyServiceNode": {
"type": "string",
"description": "Originating Policy Services Node\n"
},
"snmpPollingInterval": {
"type": "number",
"description": "SNMP Polling Interval in seconds - Range: `600`-`86400`\n"
},
"snmpRoCommunity": {
"type": "string",
"description": "SNMP RO Community\n"
},
"snmpVersion": {
"type": "string",
"description": "SNMP version - Choices: `ONE`, `TWO_C`, `THREE`\n"
},
"softwareVersion": {
"type": "string",
"description": "Software version\n"
},
"tacacsConnectModeOptions": {
"type": "string",
"description": "Connect mode options - Choices: `OFF`, `ON_LEGACY`, `ON_DRAFT_COMPLIANT`\n"
},
"tacacsSharedSecret": {
"type": "string",
"description": "Shared secret\n"
},
"trustsecCoaSourceHost": {
"type": "string",
"description": "CoA source host\n"
},
"trustsecDeviceId": {
"type": "string",
"description": "TrustSec device ID\n"
},
"trustsecDevicePassword": {
"type": "string",
"description": "TrustSec device password\n"
},
"trustsecDownloadEnviromentDataEveryXSeconds": {
"type": "number",
"description": "Download environment data every X seconds\n"
},
"trustsecDownloadPeerAuthorizationPolicyEveryXSeconds": {
"type": "number",
"description": "Download peer authorization policy every X seconds\n"
},
"trustsecDownloadSgaclListsEveryXSeconds": {
"type": "number",
"description": "Download SGACL lists every X seconds\n"
},
"trustsecEnableModePassword": {
"type": "string",
"description": "Enable mode password\n"
},
"trustsecExecModePassword": {
"type": "string",
"description": "EXEC mode password\n"
},
"trustsecExecModeUsername": {
"type": "string",
"description": "EXEC mode username\n"
},
"trustsecIncludeWhenDeployingSgtUpdates": {
"type": "boolean",
"description": "Include this device when deploying Security Group Tag Mapping Updates\n"
},
"trustsecOtherSgaDevicesToTrustThisDevice": {
"type": "boolean",
"description": "Other TrustSec devices to trust this device\n"
},
"trustsecReAuthenticationEveryXSeconds": {
"type": "number",
"description": "Re-authenticate every X seconds\n"
},
"trustsecRestApiPassword": {
"type": "string",
"description": "REST API password\n"
},
"trustsecRestApiUsername": {
"type": "string",
"description": "REST API username\n"
},
"trustsecSendConfigurationToDevice": {
"type": "boolean",
"description": "Send configuration to device\n"
},
"trustsecSendConfigurationToDeviceUsing": {
"type": "string",
"description": "Send configuration to device using - Choices: `DISABLE_ALL`, `ENABLE_USING_CLI`, `ENABLE_USING_COA`\n"
}
},
"type": "object",
"required": [
"coaPort",
"ips",
"name",
"profileName"
],
"inputProperties": {
"authenticationDtlsRequired": {
"type": "boolean",
"description": "Enforce use of DTLS\n"
},
"authenticationEnableKeyWrap": {
"type": "boolean",
"description": "Enable key wrap\n"
},
"authenticationEnableMultiSecret": {
"type": "boolean",
"description": "Enable multiple RADIUS shared secrets\n"
},
"authenticationEncryptionKey": {
"type": "string",
"description": "Encryption key\n"
},
"authenticationEncryptionKeyFormat": {
"type": "string",
"description": "Key input format - Choices: `ASCII`, `HEXADECIMAL`\n"
},
"authenticationMessageAuthenticatorCodeKey": {
"type": "string",
"description": "Message authenticator code key\n"
},
"authenticationNetworkProtocol": {
"type": "string",
"description": "Network protocol - Choices: `RADIUS`, `TACACS_PLUS`\n"
},
"authenticationRadiusSharedSecret": {
"type": "string",
"description": "RADIUS shared secret\n"
},
"authenticationSecondRadiusSharedSecret": {
"type": "string",
"description": "Second RADIUS shared secret\n"
},
"coaPort": {
"type": "number",
"description": "CoA port - Default value: `1700`\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"dtlsDnsName": {
"type": "string",
"description": "This value is used to verify the client identity contained in the X.509 RADIUS/DTLS client certificate\n"
},
"ips": {
"type": "string",
"description": "List of IP subnets\n"
},
"modelName": {
"type": "string",
"description": "Model name\n"
},
"name": {
"type": "string",
"description": "The name of the network device\n"
},
"networkDeviceGroups": {
"type": "array",
"items": {
"type": "string"
},
"description": "List of network device groups, e.g. `Device Type#All Device Types#ACCESS`\n"
},
"profileName": {
"type": "string",
"description": "Profile name - Default value: `Cisco`\n"
},
"snmpLinkTrapQuery": {
"type": "boolean",
"description": "SNMP link Trap Query\n"
},
"snmpMacTrapQuery": {
"type": "boolean",
"description": "SNMP MAC Trap Query\n"
},
"snmpOriginatingPolicyServiceNode": {
"type": "string",
"description": "Originating Policy Services Node\n"
},
"snmpPollingInterval": {
"type": "number",
"description": "SNMP Polling Interval in seconds - Range: `600`-`86400`\n"
},
"snmpRoCommunity": {
"type": "string",
"description": "SNMP RO Community\n"
},
"snmpVersion": {
"type": "string",
"description": "SNMP version - Choices: `ONE`, `TWO_C`, `THREE`\n"
},
"softwareVersion": {
"type": "string",
"description": "Software version\n"
},
"tacacsConnectModeOptions": {
"type": "string",
"description": "Connect mode options - Choices: `OFF`, `ON_LEGACY`, `ON_DRAFT_COMPLIANT`\n"
},
"tacacsSharedSecret": {
"type": "string",
"description": "Shared secret\n"
},
"trustsecCoaSourceHost": {
"type": "string",
"description": "CoA source host\n"
},
"trustsecDeviceId": {
"type": "string",
"description": "TrustSec device ID\n"
},
"trustsecDevicePassword": {
"type": "string",
"description": "TrustSec device password\n"
},
"trustsecDownloadEnviromentDataEveryXSeconds": {
"type": "number",
"description": "Download environment data every X seconds\n"
},
"trustsecDownloadPeerAuthorizationPolicyEveryXSeconds": {
"type": "number",
"description": "Download peer authorization policy every X seconds\n"
},
"trustsecDownloadSgaclListsEveryXSeconds": {
"type": "number",
"description": "Download SGACL lists every X seconds\n"
},
"trustsecEnableModePassword": {
"type": "string",
"description": "Enable mode password\n"
},
"trustsecExecModePassword": {
"type": "string",
"description": "EXEC mode password\n"
},
"trustsecExecModeUsername": {
"type": "string",
"description": "EXEC mode username\n"
},
"trustsecIncludeWhenDeployingSgtUpdates": {
"type": "boolean",
"description": "Include this device when deploying Security Group Tag Mapping Updates\n"
},
"trustsecOtherSgaDevicesToTrustThisDevice": {
"type": "boolean",
"description": "Other TrustSec devices to trust this device\n"
},
"trustsecReAuthenticationEveryXSeconds": {
"type": "number",
"description": "Re-authenticate every X seconds\n"
},
"trustsecRestApiPassword": {
"type": "string",
"description": "REST API password\n"
},
"trustsecRestApiUsername": {
"type": "string",
"description": "REST API username\n"
},
"trustsecSendConfigurationToDevice": {
"type": "boolean",
"description": "Send configuration to device\n"
},
"trustsecSendConfigurationToDeviceUsing": {
"type": "string",
"description": "Send configuration to device using - Choices: `DISABLE_ALL`, `ENABLE_USING_CLI`, `ENABLE_USING_COA`\n"
}
},
"requiredInputs": [
"ips"
],
"stateInputs": {
"description": "Input properties used for looking up and filtering NetworkDevice resources.\n",
"properties": {
"authenticationDtlsRequired": {
"type": "boolean",
"description": "Enforce use of DTLS\n"
},
"authenticationEnableKeyWrap": {
"type": "boolean",
"description": "Enable key wrap\n"
},
"authenticationEnableMultiSecret": {
"type": "boolean",
"description": "Enable multiple RADIUS shared secrets\n"
},
"authenticationEncryptionKey": {
"type": "string",
"description": "Encryption key\n"
},
"authenticationEncryptionKeyFormat": {
"type": "string",
"description": "Key input format - Choices: `ASCII`, `HEXADECIMAL`\n"
},
"authenticationMessageAuthenticatorCodeKey": {
"type": "string",
"description": "Message authenticator code key\n"
},
"authenticationNetworkProtocol": {
"type": "string",
"description": "Network protocol - Choices: `RADIUS`, `TACACS_PLUS`\n"
},
"authenticationRadiusSharedSecret": {
"type": "string",
"description": "RADIUS shared secret\n"
},
"authenticationSecondRadiusSharedSecret": {
"type": "string",
"description": "Second RADIUS shared secret\n"
},
"coaPort": {
"type": "number",
"description": "CoA port - Default value: `1700`\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"dtlsDnsName": {
"type": "string",
"description": "This value is used to verify the client identity contained in the X.509 RADIUS/DTLS client certificate\n"
},
"ips": {
"type": "string",
"description": "List of IP subnets\n"
},
"modelName": {
"type": "string",
"description": "Model name\n"
},
"name": {
"type": "string",
"description": "The name of the network device\n"
},
"networkDeviceGroups": {
"type": "array",
"items": {
"type": "string"
},
"description": "List of network device groups, e.g. `Device Type#All Device Types#ACCESS`\n"
},
"profileName": {
"type": "string",
"description": "Profile name - Default value: `Cisco`\n"
},
"snmpLinkTrapQuery": {
"type": "boolean",
"description": "SNMP link Trap Query\n"
},
"snmpMacTrapQuery": {
"type": "boolean",
"description": "SNMP MAC Trap Query\n"
},
"snmpOriginatingPolicyServiceNode": {
"type": "string",
"description": "Originating Policy Services Node\n"
},
"snmpPollingInterval": {
"type": "number",
"description": "SNMP Polling Interval in seconds - Range: `600`-`86400`\n"
},
"snmpRoCommunity": {
"type": "string",
"description": "SNMP RO Community\n"
},
"snmpVersion": {
"type": "string",
"description": "SNMP version - Choices: `ONE`, `TWO_C`, `THREE`\n"
},
"softwareVersion": {
"type": "string",
"description": "Software version\n"
},
"tacacsConnectModeOptions": {
"type": "string",
"description": "Connect mode options - Choices: `OFF`, `ON_LEGACY`, `ON_DRAFT_COMPLIANT`\n"
},
"tacacsSharedSecret": {
"type": "string",
"description": "Shared secret\n"
},
"trustsecCoaSourceHost": {
"type": "string",
"description": "CoA source host\n"
},
"trustsecDeviceId": {
"type": "string",
"description": "TrustSec device ID\n"
},
"trustsecDevicePassword": {
"type": "string",
"description": "TrustSec device password\n"
},
"trustsecDownloadEnviromentDataEveryXSeconds": {
"type": "number",
"description": "Download environment data every X seconds\n"
},
"trustsecDownloadPeerAuthorizationPolicyEveryXSeconds": {
"type": "number",
"description": "Download peer authorization policy every X seconds\n"
},
"trustsecDownloadSgaclListsEveryXSeconds": {
"type": "number",
"description": "Download SGACL lists every X seconds\n"
},
"trustsecEnableModePassword": {
"type": "string",
"description": "Enable mode password\n"
},
"trustsecExecModePassword": {
"type": "string",
"description": "EXEC mode password\n"
},
"trustsecExecModeUsername": {
"type": "string",
"description": "EXEC mode username\n"
},
"trustsecIncludeWhenDeployingSgtUpdates": {
"type": "boolean",
"description": "Include this device when deploying Security Group Tag Mapping Updates\n"
},
"trustsecOtherSgaDevicesToTrustThisDevice": {
"type": "boolean",
"description": "Other TrustSec devices to trust this device\n"
},
"trustsecReAuthenticationEveryXSeconds": {
"type": "number",
"description": "Re-authenticate every X seconds\n"
},
"trustsecRestApiPassword": {
"type": "string",
"description": "REST API password\n"
},
"trustsecRestApiUsername": {
"type": "string",
"description": "REST API username\n"
},
"trustsecSendConfigurationToDevice": {
"type": "boolean",
"description": "Send configuration to device\n"
},
"trustsecSendConfigurationToDeviceUsing": {
"type": "string",
"description": "Send configuration to device using - Choices: `DISABLE_ALL`, `ENABLE_USING_CLI`, `ENABLE_USING_COA`\n"
}
},
"type": "object"
}
},
"ise:index/networkDeviceGroup:NetworkDeviceGroup": {
"properties": {
"description": {
"type": "string",
"description": "Description\n"
},
"name": {
"type": "string",
"description": "The name of the network device group including its hierarchy, e.g. `Device Type#All Device Types#ACCESS`.\n"
},
"rootGroup": {
"type": "string",
"description": "The name of the root device group.\n"
}
},
"type": "object",
"required": [
"name",
"rootGroup"
],
"inputProperties": {
"description": {
"type": "string",
"description": "Description\n"
},
"name": {
"type": "string",
"description": "The name of the network device group including its hierarchy, e.g. `Device Type#All Device Types#ACCESS`.\n"
},
"rootGroup": {
"type": "string",
"description": "The name of the root device group.\n"
}
},
"requiredInputs": [
"rootGroup"
],
"stateInputs": {
"description": "Input properties used for looking up and filtering NetworkDeviceGroup resources.\n",
"properties": {
"description": {
"type": "string",
"description": "Description\n"
},
"name": {
"type": "string",
"description": "The name of the network device group including its hierarchy, e.g. `Device Type#All Device Types#ACCESS`.\n"
},
"rootGroup": {
"type": "string",
"description": "The name of the root device group.\n"
}
},
"type": "object"
}
},
"ise:index/repository:Repository": {
"properties": {
"enablePki": {
"type": "boolean",
"description": "Enable PKI\n"
},
"name": {
"type": "string",
"description": "Repository name should be less than 80 characters and can contain alphanumeric, underscore, hyphen and dot characters.\n"
},
"password": {
"type": "string",
"description": "Password can contain alphanumeric and/or special characters.\n"
},
"path": {
"type": "string",
"description": "Path should always start with \"/\" and can contain alphanumeric, underscore, hyphen and dot characters.\n"
},
"protocol": {
"type": "string",
"description": "Protocol - Choices: `CDROM`, `DISK`, `FTP`, `HTTP`, `HTTPS`, `NFS`, `SFTP`, `TFTP`\n"
},
"serverName": {
"type": "string",
"description": "Name of the server\n"
},
"userName": {
"type": "string",
"description": "User name\n"
}
},
"type": "object",
"required": [
"name",
"path",
"protocol"
],
"inputProperties": {
"enablePki": {
"type": "boolean",
"description": "Enable PKI\n"
},
"name": {
"type": "string",
"description": "Repository name should be less than 80 characters and can contain alphanumeric, underscore, hyphen and dot characters.\n"
},
"password": {
"type": "string",
"description": "Password can contain alphanumeric and/or special characters.\n"
},
"path": {
"type": "string",
"description": "Path should always start with \"/\" and can contain alphanumeric, underscore, hyphen and dot characters.\n"
},
"protocol": {
"type": "string",
"description": "Protocol - Choices: `CDROM`, `DISK`, `FTP`, `HTTP`, `HTTPS`, `NFS`, `SFTP`, `TFTP`\n"
},
"serverName": {
"type": "string",
"description": "Name of the server\n"
},
"userName": {
"type": "string",
"description": "User name\n"
}
},
"requiredInputs": [
"path",
"protocol"
],
"stateInputs": {
"description": "Input properties used for looking up and filtering Repository resources.\n",
"properties": {
"enablePki": {
"type": "boolean",
"description": "Enable PKI\n"
},
"name": {
"type": "string",
"description": "Repository name should be less than 80 characters and can contain alphanumeric, underscore, hyphen and dot characters.\n"
},
"password": {
"type": "string",
"description": "Password can contain alphanumeric and/or special characters.\n"
},
"path": {
"type": "string",
"description": "Path should always start with \"/\" and can contain alphanumeric, underscore, hyphen and dot characters.\n"
},
"protocol": {
"type": "string",
"description": "Protocol - Choices: `CDROM`, `DISK`, `FTP`, `HTTP`, `HTTPS`, `NFS`, `SFTP`, `TFTP`\n"
},
"serverName": {
"type": "string",
"description": "Name of the server\n"
},
"userName": {
"type": "string",
"description": "User name\n"
}
},
"type": "object"
}
},
"ise:index/tacacsCommandSet:TacacsCommandSet": {
"properties": {
"commands": {
"type": "string"
},
"description": {
"type": "string",
"description": "Description\n"
},
"name": {
"type": "string",
"description": "The name of the TACACS command set\n"
},
"permitUnmatched": {
"type": "boolean",
"description": "Permit unmatched commands - Default value: `false`\n"
}
},
"type": "object",
"required": [
"name",
"permitUnmatched"
],
"inputProperties": {
"commands": {
"type": "string"
},
"description": {
"type": "string",
"description": "Description\n"
},
"name": {
"type": "string",
"description": "The name of the TACACS command set\n"
},
"permitUnmatched": {
"type": "boolean",
"description": "Permit unmatched commands - Default value: `false`\n"
}
},
"stateInputs": {
"description": "Input properties used for looking up and filtering TacacsCommandSet resources.\n",
"properties": {
"commands": {
"type": "string"
},
"description": {
"type": "string",
"description": "Description\n"
},
"name": {
"type": "string",
"description": "The name of the TACACS command set\n"
},
"permitUnmatched": {
"type": "boolean",
"description": "Permit unmatched commands - Default value: `false`\n"
}
},
"type": "object"
}
},
"ise:index/tacacsProfile:TacacsProfile": {
"properties": {
"description": {
"type": "string",
"description": "Description\n"
},
"name": {
"type": "string",
"description": "The name of the TACACS profile\n"
},
"sessionAttributes": {
"type": "string"
}
},
"type": "object",
"required": [
"name"
],
"inputProperties": {
"description": {
"type": "string",
"description": "Description\n"
},
"name": {
"type": "string",
"description": "The name of the TACACS profile\n"
},
"sessionAttributes": {
"type": "string"
}
},
"stateInputs": {
"description": "Input properties used for looking up and filtering TacacsProfile resources.\n",
"properties": {
"description": {
"type": "string",
"description": "Description\n"
},
"name": {
"type": "string",
"description": "The name of the TACACS profile\n"
},
"sessionAttributes": {
"type": "string"
}
},
"type": "object"
}
},
"ise:index/trustsecEgressMatrixCell:TrustsecEgressMatrixCell": {
"properties": {
"defaultRule": {
"type": "string",
"description": "Can be used only if sgacls not specified. - Choices: `NONE`, `DENY_IP`, `PERMIT_IP` - Default value: `NONE`\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"destinationSgtId": {
"type": "string",
"description": "Destination Trustsec Security Group ID\n"
},
"matrixCellStatus": {
"type": "string",
"description": "Matrix Cell Status - Choices: `DISABLED`, `ENABLED`, `MONITOR` - Default value: `DISABLED`\n"
},
"sgacls": {
"type": "array",
"items": {
"type": "string"
},
"description": "List of TrustSec Security Groups ACLs\n"
},
"sourceSgtId": {
"type": "string",
"description": "Source Trustsec Security Group ID\n"
}
},
"type": "object",
"required": [
"defaultRule",
"destinationSgtId",
"matrixCellStatus",
"sourceSgtId"
],
"inputProperties": {
"defaultRule": {
"type": "string",
"description": "Can be used only if sgacls not specified. - Choices: `NONE`, `DENY_IP`, `PERMIT_IP` - Default value: `NONE`\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"destinationSgtId": {
"type": "string",
"description": "Destination Trustsec Security Group ID\n"
},
"matrixCellStatus": {
"type": "string",
"description": "Matrix Cell Status - Choices: `DISABLED`, `ENABLED`, `MONITOR` - Default value: `DISABLED`\n"
},
"sgacls": {
"type": "array",
"items": {
"type": "string"
},
"description": "List of TrustSec Security Groups ACLs\n"
},
"sourceSgtId": {
"type": "string",
"description": "Source Trustsec Security Group ID\n"
}
},
"requiredInputs": [
"destinationSgtId",
"sourceSgtId"
],
"stateInputs": {
"description": "Input properties used for looking up and filtering TrustsecEgressMatrixCell resources.\n",
"properties": {
"defaultRule": {
"type": "string",
"description": "Can be used only if sgacls not specified. - Choices: `NONE`, `DENY_IP`, `PERMIT_IP` - Default value: `NONE`\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"destinationSgtId": {
"type": "string",
"description": "Destination Trustsec Security Group ID\n"
},
"matrixCellStatus": {
"type": "string",
"description": "Matrix Cell Status - Choices: `DISABLED`, `ENABLED`, `MONITOR` - Default value: `DISABLED`\n"
},
"sgacls": {
"type": "array",
"items": {
"type": "string"
},
"description": "List of TrustSec Security Groups ACLs\n"
},
"sourceSgtId": {
"type": "string",
"description": "Source Trustsec Security Group ID\n"
}
},
"type": "object"
}
},
"ise:index/trustsecIpToSgtMapping:TrustsecIpToSgtMapping": {
"properties": {
"deployTo": {
"type": "string",
"description": "Mandatory unless `mapping_group` is set or unless `deploy_type` is `ALL`\n"
},
"deployType": {
"type": "string",
"description": "Deploy Type - Choices: `ALL`, `ND`, `NDG`\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"hostIp": {
"type": "string",
"description": "Mandatory if `host_name` is empty\n"
},
"hostName": {
"type": "string",
"description": "Mandatory if `host_ip` is empty\n"
},
"mappingGroup": {
"type": "string",
"description": "IP to SGT Mapping Group ID. Mandatory unless `sgt` and `deploy_to` and `deploy_type` are set\n"
},
"name": {
"type": "string",
"description": "The name of the IP to SGT mapping\n"
},
"sgt": {
"type": "string",
"description": "Trustsec Security Group ID. Mandatory unless `mapping_group` is set\n"
}
},
"type": "object",
"required": [
"name"
],
"inputProperties": {
"deployTo": {
"type": "string",
"description": "Mandatory unless `mapping_group` is set or unless `deploy_type` is `ALL`\n"
},
"deployType": {
"type": "string",
"description": "Deploy Type - Choices: `ALL`, `ND`, `NDG`\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"hostIp": {
"type": "string",
"description": "Mandatory if `host_name` is empty\n"
},
"hostName": {
"type": "string",
"description": "Mandatory if `host_ip` is empty\n"
},
"mappingGroup": {
"type": "string",
"description": "IP to SGT Mapping Group ID. Mandatory unless `sgt` and `deploy_to` and `deploy_type` are set\n"
},
"name": {
"type": "string",
"description": "The name of the IP to SGT mapping\n"
},
"sgt": {
"type": "string",
"description": "Trustsec Security Group ID. Mandatory unless `mapping_group` is set\n"
}
},
"stateInputs": {
"description": "Input properties used for looking up and filtering TrustsecIpToSgtMapping resources.\n",
"properties": {
"deployTo": {
"type": "string",
"description": "Mandatory unless `mapping_group` is set or unless `deploy_type` is `ALL`\n"
},
"deployType": {
"type": "string",
"description": "Deploy Type - Choices: `ALL`, `ND`, `NDG`\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"hostIp": {
"type": "string",
"description": "Mandatory if `host_name` is empty\n"
},
"hostName": {
"type": "string",
"description": "Mandatory if `host_ip` is empty\n"
},
"mappingGroup": {
"type": "string",
"description": "IP to SGT Mapping Group ID. Mandatory unless `sgt` and `deploy_to` and `deploy_type` are set\n"
},
"name": {
"type": "string",
"description": "The name of the IP to SGT mapping\n"
},
"sgt": {
"type": "string",
"description": "Trustsec Security Group ID. Mandatory unless `mapping_group` is set\n"
}
},
"type": "object"
}
},
"ise:index/trustsecIpToSgtMappingGroup:TrustsecIpToSgtMappingGroup": {
"properties": {
"deployTo": {
"type": "string",
"description": "Mandatory unless `deploy_type` is `ALL`\n"
},
"deployType": {
"type": "string",
"description": "Deploy Type - Choices: `ALL`, `ND`, `NDG`\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"name": {
"type": "string",
"description": "The name of the IP to SGT mapping Group\n"
},
"sgt": {
"type": "string",
"description": "Trustsec Security Group ID\n"
}
},
"type": "object",
"required": [
"deployType",
"name",
"sgt"
],
"inputProperties": {
"deployTo": {
"type": "string",
"description": "Mandatory unless `deploy_type` is `ALL`\n"
},
"deployType": {
"type": "string",
"description": "Deploy Type - Choices: `ALL`, `ND`, `NDG`\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"name": {
"type": "string",
"description": "The name of the IP to SGT mapping Group\n"
},
"sgt": {
"type": "string",
"description": "Trustsec Security Group ID\n"
}
},
"requiredInputs": [
"deployType",
"sgt"
],
"stateInputs": {
"description": "Input properties used for looking up and filtering TrustsecIpToSgtMappingGroup resources.\n",
"properties": {
"deployTo": {
"type": "string",
"description": "Mandatory unless `deploy_type` is `ALL`\n"
},
"deployType": {
"type": "string",
"description": "Deploy Type - Choices: `ALL`, `ND`, `NDG`\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"name": {
"type": "string",
"description": "The name of the IP to SGT mapping Group\n"
},
"sgt": {
"type": "string",
"description": "Trustsec Security Group ID\n"
}
},
"type": "object"
}
},
"ise:index/trustsecSecurityGroup:TrustsecSecurityGroup": {
"properties": {
"description": {
"type": "string",
"description": "Description\n"
},
"isReadOnly": {
"type": "boolean",
"description": "Read-only - Default value: `false`\n"
},
"name": {
"type": "string",
"description": "The name of the security group\n"
},
"propogateToApic": {
"type": "boolean",
"description": "Propagate to APIC (ACI)\n"
},
"value": {
"type": "number",
"description": "`-1` to auto-generate - Range: `-1`-`65519`\n"
}
},
"type": "object",
"required": [
"isReadOnly",
"name",
"value"
],
"inputProperties": {
"description": {
"type": "string",
"description": "Description\n"
},
"isReadOnly": {
"type": "boolean",
"description": "Read-only - Default value: `false`\n"
},
"name": {
"type": "string",
"description": "The name of the security group\n"
},
"propogateToApic": {
"type": "boolean",
"description": "Propagate to APIC (ACI)\n"
},
"value": {
"type": "number",
"description": "`-1` to auto-generate - Range: `-1`-`65519`\n"
}
},
"requiredInputs": [
"value"
],
"stateInputs": {
"description": "Input properties used for looking up and filtering TrustsecSecurityGroup resources.\n",
"properties": {
"description": {
"type": "string",
"description": "Description\n"
},
"isReadOnly": {
"type": "boolean",
"description": "Read-only - Default value: `false`\n"
},
"name": {
"type": "string",
"description": "The name of the security group\n"
},
"propogateToApic": {
"type": "boolean",
"description": "Propagate to APIC (ACI)\n"
},
"value": {
"type": "number",
"description": "`-1` to auto-generate - Range: `-1`-`65519`\n"
}
},
"type": "object"
}
},
"ise:index/trustsecSecurityGroupAcl:TrustsecSecurityGroupAcl": {
"properties": {
"aclContent": {
"type": "string",
"description": "Content of ACL\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"ipVersion": {
"type": "string",
"description": "IP Version - Choices: `IPV4`, `IPV6`, `IP_AGNOSTIC` - Default value: `IP_AGNOSTIC`\n"
},
"name": {
"type": "string",
"description": "The name of the security group ACL\n"
},
"readOnly": {
"type": "boolean",
"description": "Read-only - Default value: `false`\n"
}
},
"type": "object",
"required": [
"aclContent",
"ipVersion",
"name",
"readOnly"
],
"inputProperties": {
"aclContent": {
"type": "string",
"description": "Content of ACL\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"ipVersion": {
"type": "string",
"description": "IP Version - Choices: `IPV4`, `IPV6`, `IP_AGNOSTIC` - Default value: `IP_AGNOSTIC`\n"
},
"name": {
"type": "string",
"description": "The name of the security group ACL\n"
},
"readOnly": {
"type": "boolean",
"description": "Read-only - Default value: `false`\n"
}
},
"requiredInputs": [
"aclContent"
],
"stateInputs": {
"description": "Input properties used for looking up and filtering TrustsecSecurityGroupAcl resources.\n",
"properties": {
"aclContent": {
"type": "string",
"description": "Content of ACL\n"
},
"description": {
"type": "string",
"description": "Description\n"
},
"ipVersion": {
"type": "string",
"description": "IP Version - Choices: `IPV4`, `IPV6`, `IP_AGNOSTIC` - Default value: `IP_AGNOSTIC`\n"
},
"name": {
"type": "string",
"description": "The name of the security group ACL\n"
},
"readOnly": {
"type": "boolean",
"description": "Read-only - Default value: `false`\n"
}
},
"type": "object"
}
},
"ise:index/userIdentityGroup:UserIdentityGroup": {
"properties": {
"description": {
"type": "string",
"description": "Description\n"
},
"name": {
"type": "string",
"description": "The name of the user identity group\n"
},
"parent": {
"type": "string",
"description": "Parent user identity group, e.g. `NAC Group:NAC:IdentityGroups:User Identity Groups`\n"
}
},
"type": "object",
"required": [
"name"
],
"inputProperties": {
"description": {
"type": "string",
"description": "Description\n"
},
"name": {
"type": "string",
"description": "The name of the user identity group\n"
},
"parent": {
"type": "string",
"description": "Parent user identity group, e.g. `NAC Group:NAC:IdentityGroups:User Identity Groups`\n"
}
},
"stateInputs": {
"description": "Input properties used for looking up and filtering UserIdentityGroup resources.\n",
"properties": {
"description": {
"type": "string",
"description": "Description\n"
},
"name": {
"type": "string",
"description": "The name of the user identity group\n"
},
"parent": {
"type": "string",
"description": "Parent user identity group, e.g. `NAC Group:NAC:IdentityGroups:User Identity Groups`\n"
}
},
"type": "object"
}
}
},
"functions": {
"ise:index/getActiveDirectoryGroupsByDomain:getActiveDirectoryGroupsByDomain": {
"inputs": {
"description": "A collection of arguments for invoking getActiveDirectoryGroupsByDomain.\n",
"properties": {
"domain": {
"type": "string"
},
"filter": {
"type": "string"
},
"joinPointId": {
"type": "string"
},
"sidFilter": {
"type": "string"
},
"typeFilter": {
"type": "string"
}
},
"type": "object",
"required": [
"domain",
"joinPointId"
]
},
"outputs": {
"description": "A collection of values returned by getActiveDirectoryGroupsByDomain.\n",
"properties": {
"domain": {
"type": "string"
},
"filter": {
"type": "string"
},
"groups": {
"type": "string"
},
"id": {
"description": "The provider-assigned unique ID for this managed resource.\n",
"type": "string"
},
"joinPointId": {
"type": "string"
},
"sidFilter": {
"type": "string"
},
"typeFilter": {
"type": "string"
}
},
"required": [
"domain",
"groups",
"id",
"joinPointId"
],
"type": "object"
}
},
"ise:index/getActiveDirectoryJoinPoint:getActiveDirectoryJoinPoint": {
"inputs": {
"description": "A collection of arguments for invoking getActiveDirectoryJoinPoint.\n",
"properties": {
"id": {
"type": "string"
}
},
"type": "object",
"required": [
"id"
]
},
"outputs": {
"description": "A collection of values returned by getActiveDirectoryJoinPoint.\n",
"properties": {
"adScopesNames": {
"type": "string"
},
"agingTime": {
"type": "number"
},
"attributes": {
"type": "string"
},
"authProtectionType": {
"type": "string"
},
"country": {
"type": "string"
},
"department": {
"type": "string"
},
"description": {
"type": "string"
},
"domain": {
"type": "string"
},
"email": {
"type": "string"
},
"enableCallbackForDialinClient": {
"type": "boolean"
},
"enableDialinPermissionCheck": {
"type": "boolean"
},
"enableDomainAllowedList": {
"type": "boolean"
},
"enableFailedAuthProtection": {
"type": "boolean"
},
"enableMachineAccess": {
"type": "boolean"
},
"enableMachineAuth": {
"type": "boolean"
},
"enablePassChange": {
"type": "boolean"
},
"enableRewrites": {
"type": "boolean"
},
"failedAuthThreshold": {
"type": "number"
},
"firstName": {
"type": "string"
},
"groups": {
"type": "string"
},
"id": {
"type": "string"
},
"identityNotInAdBehaviour": {
"type": "string"
},
"jobTitle": {
"type": "string"
},
"lastName": {
"type": "string"
},
"locality": {
"type": "string"
},
"name": {
"type": "string"
},
"organizationalUnit": {
"type": "string"
},
"plaintextAuth": {
"type": "boolean"
},
"rewriteRules": {
"type": "string"
},
"schema": {
"type": "string"
},
"stateOrProvince": {
"type": "string"
},
"streetAddress": {
"type": "string"
},
"telephone": {
"type": "string"
},
"unreachableDomainsBehaviour": {
"type": "string"
}
},
"required": [
"adScopesNames",
"agingTime",
"attributes",
"authProtectionType",
"country",
"department",
"description",
"domain",
"email",
"enableCallbackForDialinClient",
"enableDialinPermissionCheck",
"enableDomainAllowedList",
"enableFailedAuthProtection",
"enableMachineAccess",
"enableMachineAuth",
"enablePassChange",
"enableRewrites",
"failedAuthThreshold",
"firstName",
"groups",
"id",
"identityNotInAdBehaviour",
"jobTitle",
"lastName",
"locality",
"name",
"organizationalUnit",
"plaintextAuth",
"rewriteRules",
"schema",
"stateOrProvince",
"streetAddress",
"telephone",
"unreachableDomainsBehaviour"
],
"type": "object"
}
},
"ise:index/getAllowedProtocols:getAllowedProtocols": {
"inputs": {
"description": "A collection of arguments for invoking getAllowedProtocols.\n",
"properties": {
"id": {
"type": "string"
},
"name": {
"type": "string"
}
},
"type": "object"
},
"outputs": {
"description": "A collection of values returned by getAllowedProtocols.\n",
"properties": {
"allow5g": {
"type": "boolean"
},
"allowChap": {
"type": "boolean"
},
"allowEapFast": {
"type": "boolean"
},
"allowEapMd5": {
"type": "boolean"
},
"allowEapTls": {
"type": "boolean"
},
"allowEapTtls": {
"type": "boolean"
},
"allowLeap": {
"type": "boolean"
},
"allowMsChapV1": {
"type": "boolean"
},
"allowMsChapV2": {
"type": "boolean"
},
"allowPapAscii": {
"type": "boolean"
},
"allowPeap": {
"type": "boolean"
},
"allowPreferredEapProtocol": {
"type": "boolean"
},
"allowTeap": {
"type": "boolean"
},
"allowWeakCiphersForEap": {
"type": "boolean"
},
"description": {
"type": "string"
},
"eapFastAcceptClientCert": {
"type": "boolean"
},
"eapFastAllowMachineAuthentication": {
"type": "boolean"
},
"eapFastEapGtc": {
"type": "boolean"
},
"eapFastEapGtcPwdChange": {
"type": "boolean"
},
"eapFastEapGtcPwdChangeRetries": {
"type": "number"
},
"eapFastEapMsChapV2": {
"type": "boolean"
},
"eapFastEapMsChapV2PwdChange": {
"type": "boolean"
},
"eapFastEapMsChapV2PwdChangeRetries": {
"type": "number"
},
"eapFastEapTls": {
"type": "boolean"
},
"eapFastEapTlsAuthOfExpiredCerts": {
"type": "boolean"
},
"eapFastEnableEapChaining": {
"type": "boolean"
},
"eapFastPacsAllowAnonymousProvisioning": {
"type": "boolean"
},
"eapFastPacsAllowAuthenticatedProvisioning": {
"type": "boolean"
},
"eapFastPacsAllowClientCert": {
"type": "boolean"
},
"eapFastPacsAllowMachineAuthentication": {
"type": "boolean"
},
"eapFastPacsAuthorizationPacTtl": {
"type": "number"
},
"eapFastPacsAuthorizationPacTtlUnit": {
"type": "string"
},
"eapFastPacsMachinePacTtl": {
"type": "number"
},
"eapFastPacsMachinePacTtlUnit": {
"type": "string"
},
"eapFastPacsServerReturns": {
"type": "boolean"
},
"eapFastPacsStatelessSessionResume": {
"type": "boolean"
},
"eapFastPacsTunnelPacTtl": {
"type": "number"
},
"eapFastPacsTunnelPacTtlUnit": {
"type": "string"
},
"eapFastPacsUseProactivePacUpdatePercentage": {
"type": "number"
},
"eapFastUsePacs": {
"type": "boolean"
},
"eapTlsAllowAuthOfExpiredCerts": {
"type": "boolean"
},
"eapTlsEnableStatelessSessionResume": {
"type": "boolean"
},
"eapTlsLBit": {
"type": "boolean"
},
"eapTlsSessionTicketPercentage": {
"type": "number"
},
"eapTlsSessionTicketTtl": {
"type": "number"
},
"eapTlsSessionTicketTtlUnit": {
"type": "string"
},
"eapTtlsChap": {
"type": "boolean"
},
"eapTtlsEapMd5": {
"type": "boolean"
},
"eapTtlsEapMsChapV2": {
"type": "boolean"
},
"eapTtlsEapMsChapV2PwdChange": {
"type": "boolean"
},
"eapTtlsEapMsChapV2PwdChangeRetries": {
"type": "number"
},
"eapTtlsMsChapV1": {
"type": "boolean"
},
"eapTtlsMsChapV2": {
"type": "boolean"
},
"eapTtlsPapAscii": {
"type": "boolean"
},
"id": {
"type": "string"
},
"name": {
"type": "string"
},
"peapAllowPeapEapGtc": {
"type": "boolean"
},
"peapAllowPeapEapGtcPwdChange": {
"type": "boolean"
},
"peapAllowPeapEapGtcPwdChangeRetries": {
"type": "number"
},
"peapAllowPeapEapMsChapV2": {
"type": "boolean"
},
"peapAllowPeapEapMsChapV2PwdChange": {
"type": "boolean"
},
"peapAllowPeapEapMsChapV2PwdChangeRetries": {
"type": "number"
},
"peapAllowPeapEapTls": {
"type": "boolean"
},
"peapAllowPeapEapTlsAuthOfExpiredCerts": {
"type": "boolean"
},
"peapPeapV0": {
"type": "boolean"
},
"preferredEapProtocol": {
"type": "string"
},
"processHostLookup": {
"type": "boolean"
},
"requireCryptobinding": {
"type": "boolean"
},
"requireMessageAuth": {
"type": "boolean"
},
"teapDowngradeMsk": {
"type": "boolean"
},
"teapEapAcceptClientCertDuringTunnelEst": {
"type": "boolean"
},
"teapEapChaining": {
"type": "boolean"
},
"teapEapMsChapV2": {
"type": "boolean"
},
"teapEapMsChapV2PwdChange": {
"type": "boolean"
},
"teapEapMsChapV2PwdChangeRetries": {
"type": "number"
},
"teapEapTls": {
"type": "boolean"
},
"teapEapTlsAuthOfExpiredCerts": {
"type": "boolean"
},
"teapRequestBasicPwdAuth": {
"type": "boolean"
}
},
"required": [
"allow5g",
"allowChap",
"allowEapFast",
"allowEapMd5",
"allowEapTls",
"allowEapTtls",
"allowLeap",
"allowMsChapV1",
"allowMsChapV2",
"allowPapAscii",
"allowPeap",
"allowPreferredEapProtocol",
"allowTeap",
"allowWeakCiphersForEap",
"description",
"eapFastAcceptClientCert",
"eapFastAllowMachineAuthentication",
"eapFastEapGtc",
"eapFastEapGtcPwdChange",
"eapFastEapGtcPwdChangeRetries",
"eapFastEapMsChapV2",
"eapFastEapMsChapV2PwdChange",
"eapFastEapMsChapV2PwdChangeRetries",
"eapFastEapTls",
"eapFastEapTlsAuthOfExpiredCerts",
"eapFastEnableEapChaining",
"eapFastPacsAllowAnonymousProvisioning",
"eapFastPacsAllowAuthenticatedProvisioning",
"eapFastPacsAllowClientCert",
"eapFastPacsAllowMachineAuthentication",
"eapFastPacsAuthorizationPacTtl",
"eapFastPacsAuthorizationPacTtlUnit",
"eapFastPacsMachinePacTtl",
"eapFastPacsMachinePacTtlUnit",
"eapFastPacsServerReturns",
"eapFastPacsStatelessSessionResume",
"eapFastPacsTunnelPacTtl",
"eapFastPacsTunnelPacTtlUnit",
"eapFastPacsUseProactivePacUpdatePercentage",
"eapFastUsePacs",
"eapTlsAllowAuthOfExpiredCerts",
"eapTlsEnableStatelessSessionResume",
"eapTlsLBit",
"eapTlsSessionTicketPercentage",
"eapTlsSessionTicketTtl",
"eapTlsSessionTicketTtlUnit",
"eapTtlsChap",
"eapTtlsEapMd5",
"eapTtlsEapMsChapV2",
"eapTtlsEapMsChapV2PwdChange",
"eapTtlsEapMsChapV2PwdChangeRetries",
"eapTtlsMsChapV1",
"eapTtlsMsChapV2",
"eapTtlsPapAscii",
"id",
"name",
"peapAllowPeapEapGtc",
"peapAllowPeapEapGtcPwdChange",
"peapAllowPeapEapGtcPwdChangeRetries",
"peapAllowPeapEapMsChapV2",
"peapAllowPeapEapMsChapV2PwdChange",
"peapAllowPeapEapMsChapV2PwdChangeRetries",
"peapAllowPeapEapTls",
"peapAllowPeapEapTlsAuthOfExpiredCerts",
"peapPeapV0",
"preferredEapProtocol",
"processHostLookup",
"requireCryptobinding",
"requireMessageAuth",
"teapDowngradeMsk",
"teapEapAcceptClientCertDuringTunnelEst",
"teapEapChaining",
"teapEapMsChapV2",
"teapEapMsChapV2PwdChange",
"teapEapMsChapV2PwdChangeRetries",
"teapEapTls",
"teapEapTlsAuthOfExpiredCerts",
"teapRequestBasicPwdAuth"
],
"type": "object"
}
},
"ise:index/getAllowedProtocolsTacacs:getAllowedProtocolsTacacs": {
"inputs": {
"description": "A collection of arguments for invoking getAllowedProtocolsTacacs.\n",
"properties": {
"id": {
"type": "string"
},
"name": {
"type": "string"
}
},
"type": "object"
},
"outputs": {
"description": "A collection of values returned by getAllowedProtocolsTacacs.\n",
"properties": {
"allowChap": {
"type": "boolean"
},
"allowMsChapV1": {
"type": "boolean"
},
"allowPapAscii": {
"type": "boolean"
},
"description": {
"type": "string"
},
"id": {
"type": "string"
},
"name": {
"type": "string"
}
},
"required": [
"allowChap",
"allowMsChapV1",
"allowPapAscii",
"description",
"id",
"name"
],
"type": "object"
}
},
"ise:index/getAuthorizationProfile:getAuthorizationProfile": {
"inputs": {
"description": "A collection of arguments for invoking getAuthorizationProfile.\n",
"properties": {
"id": {
"type": "string"
},
"name": {
"type": "string"
}
},
"type": "object"
},
"outputs": {
"description": "A collection of values returned by getAuthorizationProfile.\n",
"properties": {
"accessType": {
"type": "string"
},
"acl": {
"type": "string"
},
"advancedAttributes": {
"type": "string"
},
"agentlessPosture": {
"type": "boolean"
},
"airespaceAcl": {
"type": "string"
},
"airespaceIpv6Acl": {
"type": "string"
},
"asaVpn": {
"type": "string"
},
"autoSmartPort": {
"type": "string"
},
"avcProfile": {
"type": "string"
},
"daclName": {
"type": "string"
},
"description": {
"type": "string"
},
"easywiredSessionCandidate": {
"type": "boolean"
},
"id": {
"type": "string"
},
"interfaceTemplate": {
"type": "string"
},
"ipv6AclFilter": {
"type": "string"
},
"ipv6DaclName": {
"type": "string"
},
"macSecPolicy": {
"type": "string"
},
"name": {
"type": "string"
},
"neat": {
"type": "boolean"
},
"profileName": {
"type": "string"
},
"reauthenticationConnectivity": {
"type": "string"
},
"reauthenticationTimer": {
"type": "number"
},
"serviceTemplate": {
"type": "boolean"
},
"trackMovement": {
"type": "boolean"
},
"uniqueIdentifier": {
"type": "string"
},
"vlanNameId": {
"type": "string"
},
"vlanTagId": {
"type": "number"
},
"voiceDomainPermission": {
"type": "boolean"
},
"webAuth": {
"type": "boolean"
},
"webRedirectionAcl": {
"type": "string"
},
"webRedirectionDisplayCertificatesRenewalMessages": {
"type": "boolean"
},
"webRedirectionPortalName": {
"type": "string"
},
"webRedirectionStaticIpHostNameFqdn": {
"type": "string"
},
"webRedirectionType": {
"type": "string"
}
},
"required": [
"accessType",
"acl",
"advancedAttributes",
"agentlessPosture",
"airespaceAcl",
"airespaceIpv6Acl",
"asaVpn",
"autoSmartPort",
"avcProfile",
"daclName",
"description",
"easywiredSessionCandidate",
"id",
"interfaceTemplate",
"ipv6AclFilter",
"ipv6DaclName",
"macSecPolicy",
"name",
"neat",
"profileName",
"reauthenticationConnectivity",
"reauthenticationTimer",
"serviceTemplate",
"trackMovement",
"uniqueIdentifier",
"vlanNameId",
"vlanTagId",
"voiceDomainPermission",
"webAuth",
"webRedirectionAcl",
"webRedirectionDisplayCertificatesRenewalMessages",
"webRedirectionPortalName",
"webRedirectionStaticIpHostNameFqdn",
"webRedirectionType"
],
"type": "object"
}
},
"ise:index/getCertificateAuthenticationProfile:getCertificateAuthenticationProfile": {
"inputs": {
"description": "A collection of arguments for invoking getCertificateAuthenticationProfile.\n",
"properties": {
"id": {
"type": "string"
},
"name": {
"type": "string"
}
},
"type": "object"
},
"outputs": {
"description": "A collection of values returned by getCertificateAuthenticationProfile.\n",
"properties": {
"allowedAsUserName": {
"type": "boolean"
},
"certificateAttributeName": {
"type": "string"
},
"description": {
"type": "string"
},
"externalIdentityStoreName": {
"type": "string"
},
"id": {
"type": "string"
},
"matchMode": {
"type": "string"
},
"name": {
"type": "string"
},
"usernameFrom": {
"type": "string"
}
},
"required": [
"allowedAsUserName",
"certificateAttributeName",
"description",
"externalIdentityStoreName",
"id",
"matchMode",
"name",
"usernameFrom"
],
"type": "object"
}
},
"ise:index/getDeviceAdminAuthenticationRule:getDeviceAdminAuthenticationRule": {
"inputs": {
"description": "A collection of arguments for invoking getDeviceAdminAuthenticationRule.\n",
"properties": {
"id": {
"type": "string"
},
"name": {
"type": "string"
},
"policySetId": {
"type": "string"
}
},
"type": "object",
"required": [
"policySetId"
]
},
"outputs": {
"description": "A collection of values returned by getDeviceAdminAuthenticationRule.\n",
"properties": {
"children": {
"type": "string"
},
"conditionAttributeName": {
"type": "string"
},
"conditionAttributeValue": {
"type": "string"
},
"conditionDictionaryName": {
"type": "string"
},
"conditionDictionaryValue": {
"type": "string"
},
"conditionId": {
"type": "string"
},
"conditionIsNegate": {
"type": "boolean"
},
"conditionOperator": {
"type": "string"
},
"conditionType": {
"type": "string"
},
"default": {
"type": "boolean"
},
"id": {
"type": "string"
},
"identitySourceName": {
"type": "string"
},
"ifAuthFail": {
"type": "string"
},
"ifProcessFail": {
"type": "string"
},
"ifUserNotFound": {
"type": "string"
},
"name": {
"type": "string"
},
"policySetId": {
"type": "string"
},
"rank": {
"type": "number"
},
"state": {
"type": "string"
}
},
"required": [
"children",
"conditionAttributeName",
"conditionAttributeValue",
"conditionDictionaryName",
"conditionDictionaryValue",
"conditionId",
"conditionIsNegate",
"conditionOperator",
"conditionType",
"default",
"id",
"identitySourceName",
"ifAuthFail",
"ifProcessFail",
"ifUserNotFound",
"name",
"policySetId",
"rank",
"state"
],
"type": "object"
}
},
"ise:index/getDeviceAdminAuthorizationExceptionRule:getDeviceAdminAuthorizationExceptionRule": {
"inputs": {
"description": "A collection of arguments for invoking getDeviceAdminAuthorizationExceptionRule.\n",
"properties": {
"id": {
"type": "string"
},
"name": {
"type": "string"
},
"policySetId": {
"type": "string"
}
},
"type": "object",
"required": [
"policySetId"
]
},
"outputs": {
"description": "A collection of values returned by getDeviceAdminAuthorizationExceptionRule.\n",
"properties": {
"children": {
"type": "string"
},
"commandSets": {
"items": {
"type": "string"
},
"type": "array"
},
"conditionAttributeName": {
"type": "string"
},
"conditionAttributeValue": {
"type": "string"
},
"conditionDictionaryName": {
"type": "string"
},
"conditionDictionaryValue": {
"type": "string"
},
"conditionId": {
"type": "string"
},
"conditionIsNegate": {
"type": "boolean"
},
"conditionOperator": {
"type": "string"
},
"conditionType": {
"type": "string"
},
"default": {
"type": "boolean"
},
"id": {
"type": "string"
},
"name": {
"type": "string"
},
"policySetId": {
"type": "string"
},
"profile": {
"type": "string"
},
"rank": {
"type": "number"
},
"state": {
"type": "string"
}
},
"required": [
"children",
"commandSets",
"conditionAttributeName",
"conditionAttributeValue",
"conditionDictionaryName",
"conditionDictionaryValue",
"conditionId",
"conditionIsNegate",
"conditionOperator",
"conditionType",
"default",
"id",
"name",
"policySetId",
"profile",
"rank",
"state"
],
"type": "object"
}
},
"ise:index/getDeviceAdminAuthorizationGlobalExceptionRule:getDeviceAdminAuthorizationGlobalExceptionRule": {
"inputs": {
"description": "A collection of arguments for invoking getDeviceAdminAuthorizationGlobalExceptionRule.\n",
"properties": {
"id": {
"type": "string"
},
"name": {
"type": "string"
}
},
"type": "object"
},
"outputs": {
"description": "A collection of values returned by getDeviceAdminAuthorizationGlobalExceptionRule.\n",
"properties": {
"children": {
"type": "string"
},
"commandSets": {
"items": {
"type": "string"
},
"type": "array"
},
"conditionAttributeName": {
"type": "string"
},
"conditionAttributeValue": {
"type": "string"
},
"conditionDictionaryName": {
"type": "string"
},
"conditionDictionaryValue": {
"type": "string"
},
"conditionId": {
"type": "string"
},
"conditionIsNegate": {
"type": "boolean"
},
"conditionOperator": {
"type": "string"
},
"conditionType": {
"type": "string"
},
"default": {
"type": "boolean"
},
"id": {
"type": "string"
},
"name": {
"type": "string"
},
"profile": {
"type": "string"
},
"rank": {
"type": "number"
},
"state": {
"type": "string"
}
},
"required": [
"children",
"commandSets",
"conditionAttributeName",
"conditionAttributeValue",
"conditionDictionaryName",
"conditionDictionaryValue",
"conditionId",
"conditionIsNegate",
"conditionOperator",
"conditionType",
"default",
"id",
"name",
"profile",
"rank",
"state"
],
"type": "object"
}
},
"ise:index/getDeviceAdminAuthorizationRule:getDeviceAdminAuthorizationRule": {
"inputs": {
"description": "A collection of arguments for invoking getDeviceAdminAuthorizationRule.\n",
"properties": {
"id": {
"type": "string"
},
"name": {
"type": "string"
},
"policySetId": {
"type": "string"
}
},
"type": "object",
"required": [
"policySetId"
]
},
"outputs": {
"description": "A collection of values returned by getDeviceAdminAuthorizationRule.\n",
"properties": {
"children": {
"type": "string"
},
"commandSets": {
"items": {
"type": "string"
},
"type": "array"
},
"conditionAttributeName": {
"type": "string"
},
"conditionAttributeValue": {
"type": "string"
},
"conditionDictionaryName": {
"type": "string"
},
"conditionDictionaryValue": {
"type": "string"
},
"conditionId": {
"type": "string"
},
"conditionIsNegate": {
"type": "boolean"
},
"conditionOperator": {
"type": "string"
},
"conditionType": {
"type": "string"
},
"default": {
"type": "boolean"
},
"id": {
"type": "string"
},
"name": {
"type": "string"
},
"policySetId": {
"type": "string"
},
"profile": {
"type": "string"
},
"rank": {
"type": "number"
},
"state": {
"type": "string"
}
},
"required": [
"children",
"commandSets",
"conditionAttributeName",
"conditionAttributeValue",
"conditionDictionaryName",
"conditionDictionaryValue",
"conditionId",
"conditionIsNegate",
"conditionOperator",
"conditionType",
"default",
"id",
"name",
"policySetId",
"profile",
"rank",
"state"
],
"type": "object"
}
},
"ise:index/getDeviceAdminCondition:getDeviceAdminCondition": {
"inputs": {
"description": "A collection of arguments for invoking getDeviceAdminCondition.\n",
"properties": {
"id": {
"type": "string"
},
"name": {
"type": "string"
}
},
"type": "object"
},
"outputs": {
"description": "A collection of values returned by getDeviceAdminCondition.\n",
"properties": {
"attributeName": {
"type": "string"
},
"attributeValue": {
"type": "string"
},
"children": {
"type": "string"
},
"conditionType": {
"type": "string"
},
"description": {
"type": "string"
},
"dictionaryName": {
"type": "string"
},
"dictionaryValue": {
"type": "string"
},
"id": {
"type": "string"
},
"isNegate": {
"type": "boolean"
},
"name": {
"type": "string"
},
"operator": {
"type": "string"
}
},
"required": [
"attributeName",
"attributeValue",
"children",
"conditionType",
"description",
"dictionaryName",
"dictionaryValue",
"id",
"isNegate",
"name",
"operator"
],
"type": "object"
}
},
"ise:index/getDeviceAdminPolicySet:getDeviceAdminPolicySet": {
"inputs": {
"description": "A collection of arguments for invoking getDeviceAdminPolicySet.\n",
"properties": {
"id": {
"type": "string"
},
"name": {
"type": "string"
}
},
"type": "object"
},
"outputs": {
"description": "A collection of values returned by getDeviceAdminPolicySet.\n",
"properties": {
"children": {
"type": "string"
},
"conditionAttributeName": {
"type": "string"
},
"conditionAttributeValue": {
"type": "string"
},
"conditionDictionaryName": {
"type": "string"
},
"conditionDictionaryValue": {
"type": "string"
},
"conditionId": {
"type": "string"
},
"conditionIsNegate": {
"type": "boolean"
},
"conditionOperator": {
"type": "string"
},
"conditionType": {
"type": "string"
},
"default": {
"type": "boolean"
},
"description": {
"type": "string"
},
"id": {
"type": "string"
},
"isProxy": {
"type": "boolean"
},
"name": {
"type": "string"
},
"rank": {
"type": "number"
},
"serviceName": {
"type": "string"
},
"state": {
"type": "string"
}
},
"required": [
"children",
"conditionAttributeName",
"conditionAttributeValue",
"conditionDictionaryName",
"conditionDictionaryValue",
"conditionId",
"conditionIsNegate",
"conditionOperator",
"conditionType",
"default",
"description",
"id",
"isProxy",
"name",
"rank",
"serviceName",
"state"
],
"type": "object"
}
},
"ise:index/getDeviceAdminTimeAndDateCondition:getDeviceAdminTimeAndDateCondition": {
"inputs": {
"description": "A collection of arguments for invoking getDeviceAdminTimeAndDateCondition.\n",
"properties": {
"id": {
"type": "string"
},
"name": {
"type": "string"
}
},
"type": "object"
},
"outputs": {
"description": "A collection of values returned by getDeviceAdminTimeAndDateCondition.\n",
"properties": {
"description": {
"type": "string"
},
"endDate": {
"type": "string"
},
"endTime": {
"type": "string"
},
"exceptionEndDate": {
"type": "string"
},
"exceptionEndTime": {
"type": "string"
},
"exceptionStartDate": {
"type": "string"
},
"exceptionStartTime": {
"type": "string"
},
"id": {
"type": "string"
},
"isNegate": {
"type": "boolean"
},
"name": {
"type": "string"
},
"startDate": {
"type": "string"
},
"startTime": {
"type": "string"
},
"weekDays": {
"items": {
"type": "string"
},
"type": "array"
},
"weekDaysExceptions": {
"items": {
"type": "string"
},
"type": "array"
}
},
"required": [
"description",
"endDate",
"endTime",
"exceptionEndDate",
"exceptionEndTime",
"exceptionStartDate",
"exceptionStartTime",
"id",
"isNegate",
"name",
"startDate",
"startTime",
"weekDays",
"weekDaysExceptions"
],
"type": "object"
}
},
"ise:index/getDownloadableAcl:getDownloadableAcl": {
"inputs": {
"description": "A collection of arguments for invoking getDownloadableAcl.\n",
"properties": {
"id": {
"type": "string"
},
"name": {
"type": "string"
}
},
"type": "object"
},
"outputs": {
"description": "A collection of values returned by getDownloadableAcl.\n",
"properties": {
"dacl": {
"type": "string"
},
"daclType": {
"type": "string"
},
"description": {
"type": "string"
},
"id": {
"type": "string"
},
"name": {
"type": "string"
}
},
"required": [
"dacl",
"daclType",
"description",
"id",
"name"
],
"type": "object"
}
},
"ise:index/getEndpoint:getEndpoint": {
"inputs": {
"description": "A collection of arguments for invoking getEndpoint.\n",
"properties": {
"id": {
"type": "string"
},
"name": {
"type": "string"
}
},
"type": "object"
},
"outputs": {
"description": "A collection of values returned by getEndpoint.\n",
"properties": {
"customAttributes": {
"additionalProperties": {
"type": "string"
},
"type": "object"
},
"description": {
"type": "string"
},
"groupId": {
"type": "string"
},
"id": {
"type": "string"
},
"identityStore": {
"type": "string"
},
"identityStoreId": {
"type": "string"
},
"mac": {
"type": "string"
},
"mdmComplianceStatus": {
"type": "boolean"
},
"mdmEncrypted": {
"type": "boolean"
},
"mdmEnrolled": {
"type": "boolean"
},
"mdmImei": {
"type": "string"
},
"mdmJailBroken": {
"type": "boolean"
},
"mdmManufacturer": {
"type": "string"
},
"mdmModel": {
"type": "string"
},
"mdmOs": {
"type": "string"
},
"mdmPhoneNumber": {
"type": "string"
},
"mdmPinlock": {
"type": "boolean"
},
"mdmReachable": {
"type": "boolean"
},
"mdmSerial": {
"type": "string"
},
"mdmServerName": {
"type": "string"
},
"name": {
"type": "string"
},
"portalUser": {
"type": "string"
},
"profileId": {
"type": "string"
},
"staticGroupAssignment": {
"type": "boolean"
},
"staticGroupAssignmentDefined": {
"type": "boolean"
},
"staticProfileAssignment": {
"type": "boolean"
},
"staticProfileAssignmentDefined": {
"type": "boolean"
}
},
"required": [
"customAttributes",
"description",
"groupId",
"id",
"identityStore",
"identityStoreId",
"mac",
"mdmComplianceStatus",
"mdmEncrypted",
"mdmEnrolled",
"mdmImei",
"mdmJailBroken",
"mdmManufacturer",
"mdmModel",
"mdmOs",
"mdmPhoneNumber",
"mdmPinlock",
"mdmReachable",
"mdmSerial",
"mdmServerName",
"name",
"portalUser",
"profileId",
"staticGroupAssignment",
"staticGroupAssignmentDefined",
"staticProfileAssignment",
"staticProfileAssignmentDefined"
],
"type": "object"
}
},
"ise:index/getEndpointIdentityGroup:getEndpointIdentityGroup": {
"inputs": {
"description": "A collection of arguments for invoking getEndpointIdentityGroup.\n",
"properties": {
"id": {
"type": "string"
},
"name": {
"type": "string"
}
},
"type": "object"
},
"outputs": {
"description": "A collection of values returned by getEndpointIdentityGroup.\n",
"properties": {
"description": {
"type": "string"
},
"id": {
"type": "string"
},
"name": {
"type": "string"
},
"parentEndpointIdentityGroupId": {
"type": "string"
},
"systemDefined": {
"type": "boolean"
}
},
"required": [
"description",
"id",
"name",
"parentEndpointIdentityGroupId",
"systemDefined"
],
"type": "object"
}
},
"ise:index/getIdentitySourceSequence:getIdentitySourceSequence": {
"inputs": {
"description": "A collection of arguments for invoking getIdentitySourceSequence.\n",
"properties": {
"id": {
"type": "string"
},
"name": {
"type": "string"
}
},
"type": "object"
},
"outputs": {
"description": "A collection of values returned by getIdentitySourceSequence.\n",
"properties": {
"breakOnStoreFail": {
"type": "boolean"
},
"certificateAuthenticationProfile": {
"type": "string"
},
"description": {
"type": "string"
},
"id": {
"type": "string"
},
"identitySources": {
"type": "string"
},
"name": {
"type": "string"
}
},
"required": [
"breakOnStoreFail",
"certificateAuthenticationProfile",
"description",
"id",
"identitySources",
"name"
],
"type": "object"
}
},
"ise:index/getInternalUser:getInternalUser": {
"inputs": {
"description": "A collection of arguments for invoking getInternalUser.\n",
"properties": {
"id": {
"type": "string"
},
"name": {
"type": "string"
}
},
"type": "object"
},
"outputs": {
"description": "A collection of values returned by getInternalUser.\n",
"properties": {
"accountNameAlias": {
"type": "string"
},
"changePassword": {
"type": "boolean"
},
"customAttributes": {
"type": "string"
},
"description": {
"type": "string"
},
"email": {
"type": "string"
},
"enablePassword": {
"type": "string"
},
"enabled": {
"type": "boolean"
},
"firstName": {
"type": "string"
},
"id": {
"type": "string"
},
"identityGroups": {
"type": "string"
},
"lastName": {
"type": "string"
},
"name": {
"type": "string"
},
"password": {
"type": "string"
},
"passwordIdStore": {
"type": "string"
},
"passwordNeverExpires": {
"type": "boolean"
}
},
"required": [
"accountNameAlias",
"changePassword",
"customAttributes",
"description",
"email",
"enablePassword",
"enabled",
"firstName",
"id",
"identityGroups",
"lastName",
"name",
"password",
"passwordIdStore",
"passwordNeverExpires"
],
"type": "object"
}
},
"ise:index/getLicenseTierState:getLicenseTierState": {
"inputs": {
"description": "A collection of arguments for invoking getLicenseTierState.\n",
"properties": {
"id": {
"type": "string"
}
},
"type": "object",
"required": [
"id"
]
},
"outputs": {
"description": "A collection of values returned by getLicenseTierState.\n",
"properties": {
"id": {
"type": "string"
},
"licenses": {
"type": "string"
}
},
"required": [
"id",
"licenses"
],
"type": "object"
}
},
"ise:index/getNetworkAccessAuthenticationRule:getNetworkAccessAuthenticationRule": {
"inputs": {
"description": "A collection of arguments for invoking getNetworkAccessAuthenticationRule.\n",
"properties": {
"id": {
"type": "string"
},
"name": {
"type": "string"
},
"policySetId": {
"type": "string"
}
},
"type": "object",
"required": [
"policySetId"
]
},
"outputs": {
"description": "A collection of values returned by getNetworkAccessAuthenticationRule.\n",
"properties": {
"children": {
"type": "string"
},
"conditionAttributeName": {
"type": "string"
},
"conditionAttributeValue": {
"type": "string"
},
"conditionDictionaryName": {
"type": "string"
},
"conditionDictionaryValue": {
"type": "string"
},
"conditionId": {
"type": "string"
},
"conditionIsNegate": {
"type": "boolean"
},
"conditionOperator": {
"type": "string"
},
"conditionType": {
"type": "string"
},
"default": {
"type": "boolean"
},
"id": {
"type": "string"
},
"identitySourceName": {
"type": "string"
},
"ifAuthFail": {
"type": "string"
},
"ifProcessFail": {
"type": "string"
},
"ifUserNotFound": {
"type": "string"
},
"name": {
"type": "string"
},
"policySetId": {
"type": "string"
},
"rank": {
"type": "number"
},
"state": {
"type": "string"
}
},
"required": [
"children",
"conditionAttributeName",
"conditionAttributeValue",
"conditionDictionaryName",
"conditionDictionaryValue",
"conditionId",
"conditionIsNegate",
"conditionOperator",
"conditionType",
"default",
"id",
"identitySourceName",
"ifAuthFail",
"ifProcessFail",
"ifUserNotFound",
"name",
"policySetId",
"rank",
"state"
],
"type": "object"
}
},
"ise:index/getNetworkAccessAuthorizationExceptionRule:getNetworkAccessAuthorizationExceptionRule": {
"inputs": {
"description": "A collection of arguments for invoking getNetworkAccessAuthorizationExceptionRule.\n",
"properties": {
"id": {
"type": "string"
},
"name": {
"type": "string"
},
"policySetId": {
"type": "string"
}
},
"type": "object",
"required": [
"policySetId"
]
},
"outputs": {
"description": "A collection of values returned by getNetworkAccessAuthorizationExceptionRule.\n",
"properties": {
"children": {
"type": "string"
},
"conditionAttributeName": {
"type": "string"
},
"conditionAttributeValue": {
"type": "string"
},
"conditionDictionaryName": {
"type": "string"
},
"conditionDictionaryValue": {
"type": "string"
},
"conditionId": {
"type": "string"
},
"conditionIsNegate": {
"type": "boolean"
},
"conditionOperator": {
"type": "string"
},
"conditionType": {
"type": "string"
},
"default": {
"type": "boolean"
},
"id": {
"type": "string"
},
"name": {
"type": "string"
},
"policySetId": {
"type": "string"
},
"profiles": {
"items": {
"type": "string"
},
"type": "array"
},
"rank": {
"type": "number"
},
"securityGroup": {
"type": "string"
},
"state": {
"type": "string"
}
},
"required": [
"children",
"conditionAttributeName",
"conditionAttributeValue",
"conditionDictionaryName",
"conditionDictionaryValue",
"conditionId",
"conditionIsNegate",
"conditionOperator",
"conditionType",
"default",
"id",
"name",
"policySetId",
"profiles",
"rank",
"securityGroup",
"state"
],
"type": "object"
}
},
"ise:index/getNetworkAccessAuthorizationGlobalExceptionRule:getNetworkAccessAuthorizationGlobalExceptionRule": {
"inputs": {
"description": "A collection of arguments for invoking getNetworkAccessAuthorizationGlobalExceptionRule.\n",
"properties": {
"id": {
"type": "string"
},
"name": {
"type": "string"
}
},
"type": "object"
},
"outputs": {
"description": "A collection of values returned by getNetworkAccessAuthorizationGlobalExceptionRule.\n",
"properties": {
"children": {
"type": "string"
},
"conditionAttributeName": {
"type": "string"
},
"conditionAttributeValue": {
"type": "string"
},
"conditionDictionaryName": {
"type": "string"
},
"conditionDictionaryValue": {
"type": "string"
},
"conditionId": {
"type": "string"
},
"conditionIsNegate": {
"type": "boolean"
},
"conditionOperator": {
"type": "string"
},
"conditionType": {
"type": "string"
},
"default": {
"type": "boolean"
},
"id": {
"type": "string"
},
"name": {
"type": "string"
},
"profiles": {
"items": {
"type": "string"
},
"type": "array"
},
"rank": {
"type": "number"
},
"securityGroup": {
"type": "string"
},
"state": {
"type": "string"
}
},
"required": [
"children",
"conditionAttributeName",
"conditionAttributeValue",
"conditionDictionaryName",
"conditionDictionaryValue",
"conditionId",
"conditionIsNegate",
"conditionOperator",
"conditionType",
"default",
"id",
"name",
"profiles",
"rank",
"securityGroup",
"state"
],
"type": "object"
}
},
"ise:index/getNetworkAccessAuthorizationRule:getNetworkAccessAuthorizationRule": {
"inputs": {
"description": "A collection of arguments for invoking getNetworkAccessAuthorizationRule.\n",
"properties": {
"id": {
"type": "string"
},
"name": {
"type": "string"
},
"policySetId": {
"type": "string"
}
},
"type": "object",
"required": [
"policySetId"
]
},
"outputs": {
"description": "A collection of values returned by getNetworkAccessAuthorizationRule.\n",
"properties": {
"children": {
"type": "string"
},
"conditionAttributeName": {
"type": "string"
},
"conditionAttributeValue": {
"type": "string"
},
"conditionDictionaryName": {
"type": "string"
},
"conditionDictionaryValue": {
"type": "string"
},
"conditionId": {
"type": "string"
},
"conditionIsNegate": {
"type": "boolean"
},
"conditionOperator": {
"type": "string"
},
"conditionType": {
"type": "string"
},
"default": {
"type": "boolean"
},
"id": {
"type": "string"
},
"name": {
"type": "string"
},
"policySetId": {
"type": "string"
},
"profiles": {
"items": {
"type": "string"
},
"type": "array"
},
"rank": {
"type": "number"
},
"securityGroup": {
"type": "string"
},
"state": {
"type": "string"
}
},
"required": [
"children",
"conditionAttributeName",
"conditionAttributeValue",
"conditionDictionaryName",
"conditionDictionaryValue",
"conditionId",
"conditionIsNegate",
"conditionOperator",
"conditionType",
"default",
"id",
"name",
"policySetId",
"profiles",
"rank",
"securityGroup",
"state"
],
"type": "object"
}
},
"ise:index/getNetworkAccessCondition:getNetworkAccessCondition": {
"inputs": {
"description": "A collection of arguments for invoking getNetworkAccessCondition.\n",
"properties": {
"id": {
"type": "string"
},
"name": {
"type": "string"
}
},
"type": "object"
},
"outputs": {
"description": "A collection of values returned by getNetworkAccessCondition.\n",
"properties": {
"attributeName": {
"type": "string"
},
"attributeValue": {
"type": "string"
},
"children": {
"type": "string"
},
"conditionType": {
"type": "string"
},
"description": {
"type": "string"
},
"dictionaryName": {
"type": "string"
},
"dictionaryValue": {
"type": "string"
},
"id": {
"type": "string"
},
"isNegate": {
"type": "boolean"
},
"name": {
"type": "string"
},
"operator": {
"type": "string"
}
},
"required": [
"attributeName",
"attributeValue",
"children",
"conditionType",
"description",
"dictionaryName",
"dictionaryValue",
"id",
"isNegate",
"name",
"operator"
],
"type": "object"
}
},
"ise:index/getNetworkAccessDictionary:getNetworkAccessDictionary": {
"inputs": {
"description": "A collection of arguments for invoking getNetworkAccessDictionary.\n",
"properties": {
"id": {
"type": "string"
},
"name": {
"type": "string"
}
},
"type": "object"
},
"outputs": {
"description": "A collection of values returned by getNetworkAccessDictionary.\n",
"properties": {
"description": {
"type": "string"
},
"dictionaryAttrType": {
"type": "string"
},
"id": {
"type": "string"
},
"name": {
"type": "string"
},
"version": {
"type": "string"
}
},
"required": [
"description",
"dictionaryAttrType",
"id",
"name",
"version"
],
"type": "object"
}
},
"ise:index/getNetworkAccessPolicySet:getNetworkAccessPolicySet": {
"inputs": {
"description": "A collection of arguments for invoking getNetworkAccessPolicySet.\n",
"properties": {
"id": {
"type": "string"
},
"name": {
"type": "string"
}
},
"type": "object"
},
"outputs": {
"description": "A collection of values returned by getNetworkAccessPolicySet.\n",
"properties": {
"children": {
"type": "string"
},
"conditionAttributeName": {
"type": "string"
},
"conditionAttributeValue": {
"type": "string"
},
"conditionDictionaryName": {
"type": "string"
},
"conditionDictionaryValue": {
"type": "string"
},
"conditionId": {
"type": "string"
},
"conditionIsNegate": {
"type": "boolean"
},
"conditionOperator": {
"type": "string"
},
"conditionType": {
"type": "string"
},
"default": {
"type": "boolean"
},
"description": {
"type": "string"
},
"id": {
"type": "string"
},
"isProxy": {
"type": "boolean"
},
"name": {
"type": "string"
},
"rank": {
"type": "number"
},
"serviceName": {
"type": "string"
},
"state": {
"type": "string"
}
},
"required": [
"children",
"conditionAttributeName",
"conditionAttributeValue",
"conditionDictionaryName",
"conditionDictionaryValue",
"conditionId",
"conditionIsNegate",
"conditionOperator",
"conditionType",
"default",
"description",
"id",
"isProxy",
"name",
"rank",
"serviceName",
"state"
],
"type": "object"
}
},
"ise:index/getNetworkAccessTimeAndDateCondition:getNetworkAccessTimeAndDateCondition": {
"inputs": {
"description": "A collection of arguments for invoking getNetworkAccessTimeAndDateCondition.\n",
"properties": {
"id": {
"type": "string"
},
"name": {
"type": "string"
}
},
"type": "object"
},
"outputs": {
"description": "A collection of values returned by getNetworkAccessTimeAndDateCondition.\n",
"properties": {
"description": {
"type": "string"
},
"endDate": {
"type": "string"
},
"endTime": {
"type": "string"
},
"exceptionEndDate": {
"type": "string"
},
"exceptionEndTime": {
"type": "string"
},
"exceptionStartDate": {
"type": "string"
},
"exceptionStartTime": {
"type": "string"
},
"id": {
"type": "string"
},
"isNegate": {
"type": "boolean"
},
"name": {
"type": "string"
},
"startDate": {
"type": "string"
},
"startTime": {
"type": "string"
},
"weekDays": {
"items": {
"type": "string"
},
"type": "array"
},
"weekDaysExceptions": {
"items": {
"type": "string"
},
"type": "array"
}
},
"required": [
"description",
"endDate",
"endTime",
"exceptionEndDate",
"exceptionEndTime",
"exceptionStartDate",
"exceptionStartTime",
"id",
"isNegate",
"name",
"startDate",
"startTime",
"weekDays",
"weekDaysExceptions"
],
"type": "object"
}
},
"ise:index/getNetworkDevice:getNetworkDevice": {
"inputs": {
"description": "A collection of arguments for invoking getNetworkDevice.\n",
"properties": {
"id": {
"type": "string"
},
"name": {
"type": "string"
}
},
"type": "object"
},
"outputs": {
"description": "A collection of values returned by getNetworkDevice.\n",
"properties": {
"authenticationDtlsRequired": {
"type": "boolean"
},
"authenticationEnableKeyWrap": {
"type": "boolean"
},
"authenticationEnableMultiSecret": {
"type": "boolean"
},
"authenticationEncryptionKey": {
"type": "string"
},
"authenticationEncryptionKeyFormat": {
"type": "string"
},
"authenticationMessageAuthenticatorCodeKey": {
"type": "string"
},
"authenticationNetworkProtocol": {
"type": "string"
},
"authenticationRadiusSharedSecret": {
"type": "string"
},
"authenticationSecondRadiusSharedSecret": {
"type": "string"
},
"coaPort": {
"type": "number"
},
"description": {
"type": "string"
},
"dtlsDnsName": {
"type": "string"
},
"id": {
"type": "string"
},
"ips": {
"type": "string"
},
"modelName": {
"type": "string"
},
"name": {
"type": "string"
},
"networkDeviceGroups": {
"items": {
"type": "string"
},
"type": "array"
},
"profileName": {
"type": "string"
},
"snmpLinkTrapQuery": {
"type": "boolean"
},
"snmpMacTrapQuery": {
"type": "boolean"
},
"snmpOriginatingPolicyServiceNode": {
"type": "string"
},
"snmpPollingInterval": {
"type": "number"
},
"snmpRoCommunity": {
"type": "string"
},
"snmpVersion": {
"type": "string"
},
"softwareVersion": {
"type": "string"
},
"tacacsConnectModeOptions": {
"type": "string"
},
"tacacsSharedSecret": {
"type": "string"
},
"trustsecCoaSourceHost": {
"type": "string"
},
"trustsecDeviceId": {
"type": "string"
},
"trustsecDevicePassword": {
"type": "string"
},
"trustsecDownloadEnviromentDataEveryXSeconds": {
"type": "number"
},
"trustsecDownloadPeerAuthorizationPolicyEveryXSeconds": {
"type": "number"
},
"trustsecDownloadSgaclListsEveryXSeconds": {
"type": "number"
},
"trustsecEnableModePassword": {
"type": "string"
},
"trustsecExecModePassword": {
"type": "string"
},
"trustsecExecModeUsername": {
"type": "string"
},
"trustsecIncludeWhenDeployingSgtUpdates": {
"type": "boolean"
},
"trustsecOtherSgaDevicesToTrustThisDevice": {
"type": "boolean"
},
"trustsecReAuthenticationEveryXSeconds": {
"type": "number"
},
"trustsecRestApiPassword": {
"type": "string"
},
"trustsecRestApiUsername": {
"type": "string"
},
"trustsecSendConfigurationToDevice": {
"type": "boolean"
},
"trustsecSendConfigurationToDeviceUsing": {
"type": "string"
}
},
"required": [
"authenticationDtlsRequired",
"authenticationEnableKeyWrap",
"authenticationEnableMultiSecret",
"authenticationEncryptionKey",
"authenticationEncryptionKeyFormat",
"authenticationMessageAuthenticatorCodeKey",
"authenticationNetworkProtocol",
"authenticationRadiusSharedSecret",
"authenticationSecondRadiusSharedSecret",
"coaPort",
"description",
"dtlsDnsName",
"id",
"ips",
"modelName",
"name",
"networkDeviceGroups",
"profileName",
"snmpLinkTrapQuery",
"snmpMacTrapQuery",
"snmpOriginatingPolicyServiceNode",
"snmpPollingInterval",
"snmpRoCommunity",
"snmpVersion",
"softwareVersion",
"tacacsConnectModeOptions",
"tacacsSharedSecret",
"trustsecCoaSourceHost",
"trustsecDeviceId",
"trustsecDevicePassword",
"trustsecDownloadEnviromentDataEveryXSeconds",
"trustsecDownloadPeerAuthorizationPolicyEveryXSeconds",
"trustsecDownloadSgaclListsEveryXSeconds",
"trustsecEnableModePassword",
"trustsecExecModePassword",
"trustsecExecModeUsername",
"trustsecIncludeWhenDeployingSgtUpdates",
"trustsecOtherSgaDevicesToTrustThisDevice",
"trustsecReAuthenticationEveryXSeconds",
"trustsecRestApiPassword",
"trustsecRestApiUsername",
"trustsecSendConfigurationToDevice",
"trustsecSendConfigurationToDeviceUsing"
],
"type": "object"
}
},
"ise:index/getNetworkDeviceGroup:getNetworkDeviceGroup": {
"inputs": {
"description": "A collection of arguments for invoking getNetworkDeviceGroup.\n",
"properties": {
"id": {
"type": "string"
},
"name": {
"type": "string"
}
},
"type": "object"
},
"outputs": {
"description": "A collection of values returned by getNetworkDeviceGroup.\n",
"properties": {
"description": {
"type": "string"
},
"id": {
"type": "string"
},
"name": {
"type": "string"
},
"rootGroup": {
"type": "string"
}
},
"required": [
"description",
"id",
"name",
"rootGroup"
],
"type": "object"
}
},
"ise:index/getRepository:getRepository": {
"inputs": {
"description": "A collection of arguments for invoking getRepository.\n",
"properties": {
"id": {
"type": "string"
},
"name": {
"type": "string"
}
},
"type": "object"
},
"outputs": {
"description": "A collection of values returned by getRepository.\n",
"properties": {
"enablePki": {
"type": "boolean"
},
"id": {
"type": "string"
},
"name": {
"type": "string"
},
"password": {
"type": "string"
},
"path": {
"type": "string"
},
"protocol": {
"type": "string"
},
"serverName": {
"type": "string"
},
"userName": {
"type": "string"
}
},
"required": [
"enablePki",
"id",
"name",
"password",
"path",
"protocol",
"serverName",
"userName"
],
"type": "object"
}
},
"ise:index/getTacacsCommandSet:getTacacsCommandSet": {
"inputs": {
"description": "A collection of arguments for invoking getTacacsCommandSet.\n",
"properties": {
"id": {
"type": "string"
},
"name": {
"type": "string"
}
},
"type": "object"
},
"outputs": {
"description": "A collection of values returned by getTacacsCommandSet.\n",
"properties": {
"commands": {
"type": "string"
},
"description": {
"type": "string"
},
"id": {
"type": "string"
},
"name": {
"type": "string"
},
"permitUnmatched": {
"type": "boolean"
}
},
"required": [
"commands",
"description",
"id",
"name",
"permitUnmatched"
],
"type": "object"
}
},
"ise:index/getTacacsProfile:getTacacsProfile": {
"inputs": {
"description": "A collection of arguments for invoking getTacacsProfile.\n",
"properties": {
"id": {
"type": "string"
},
"name": {
"type": "string"
}
},
"type": "object"
},
"outputs": {
"description": "A collection of values returned by getTacacsProfile.\n",
"properties": {
"description": {
"type": "string"
},
"id": {
"type": "string"
},
"name": {
"type": "string"
},
"sessionAttributes": {
"type": "string"
}
},
"required": [
"description",
"id",
"name",
"sessionAttributes"
],
"type": "object"
}
},
"ise:index/getTrustsecEgressMatrixCell:getTrustsecEgressMatrixCell": {
"inputs": {
"description": "A collection of arguments for invoking getTrustsecEgressMatrixCell.\n",
"properties": {
"id": {
"type": "string"
}
},
"type": "object",
"required": [
"id"
]
},
"outputs": {
"description": "A collection of values returned by getTrustsecEgressMatrixCell.\n",
"properties": {
"defaultRule": {
"type": "string"
},
"description": {
"type": "string"
},
"destinationSgtId": {
"type": "string"
},
"id": {
"type": "string"
},
"matrixCellStatus": {
"type": "string"
},
"sgacls": {
"items": {
"type": "string"
},
"type": "array"
},
"sourceSgtId": {
"type": "string"
}
},
"required": [
"defaultRule",
"description",
"destinationSgtId",
"id",
"matrixCellStatus",
"sgacls",
"sourceSgtId"
],
"type": "object"
}
},
"ise:index/getTrustsecIpToSgtMapping:getTrustsecIpToSgtMapping": {
"inputs": {
"description": "A collection of arguments for invoking getTrustsecIpToSgtMapping.\n",
"properties": {
"id": {
"type": "string"
},
"name": {
"type": "string"
}
},
"type": "object"
},
"outputs": {
"description": "A collection of values returned by getTrustsecIpToSgtMapping.\n",
"properties": {
"deployTo": {
"type": "string"
},
"deployType": {
"type": "string"
},
"description": {
"type": "string"
},
"hostIp": {
"type": "string"
},
"hostName": {
"type": "string"
},
"id": {
"type": "string"
},
"mappingGroup": {
"type": "string"
},
"name": {
"type": "string"
},
"sgt": {
"type": "string"
}
},
"required": [
"deployTo",
"deployType",
"description",
"hostIp",
"hostName",
"id",
"mappingGroup",
"name",
"sgt"
],
"type": "object"
}
},
"ise:index/getTrustsecIpToSgtMappingGroup:getTrustsecIpToSgtMappingGroup": {
"inputs": {
"description": "A collection of arguments for invoking getTrustsecIpToSgtMappingGroup.\n",
"properties": {
"id": {
"type": "string"
},
"name": {
"type": "string"
}
},
"type": "object"
},
"outputs": {
"description": "A collection of values returned by getTrustsecIpToSgtMappingGroup.\n",
"properties": {
"deployTo": {
"type": "string"
},
"deployType": {
"type": "string"
},
"description": {
"type": "string"
},
"id": {
"type": "string"
},
"name": {
"type": "string"
},
"sgt": {
"type": "string"
}
},
"required": [
"deployTo",
"deployType",
"description",
"id",
"name",
"sgt"
],
"type": "object"
}
},
"ise:index/getTrustsecSecurityGroup:getTrustsecSecurityGroup": {
"inputs": {
"description": "A collection of arguments for invoking getTrustsecSecurityGroup.\n",
"properties": {
"id": {
"type": "string"
},
"name": {
"type": "string"
}
},
"type": "object"
},
"outputs": {
"description": "A collection of values returned by getTrustsecSecurityGroup.\n",
"properties": {
"description": {
"type": "string"
},
"id": {
"type": "string"
},
"isReadOnly": {
"type": "boolean"
},
"name": {
"type": "string"
},
"propogateToApic": {
"type": "boolean"
},
"value": {
"type": "number"
}
},
"required": [
"description",
"id",
"isReadOnly",
"name",
"propogateToApic",
"value"
],
"type": "object"
}
},
"ise:index/getTrustsecSecurityGroupAcl:getTrustsecSecurityGroupAcl": {
"inputs": {
"description": "A collection of arguments for invoking getTrustsecSecurityGroupAcl.\n",
"properties": {
"id": {
"type": "string"
},
"name": {
"type": "string"
}
},
"type": "object"
},
"outputs": {
"description": "A collection of values returned by getTrustsecSecurityGroupAcl.\n",
"properties": {
"aclContent": {
"type": "string"
},
"description": {
"type": "string"
},
"id": {
"type": "string"
},
"ipVersion": {
"type": "string"
},
"name": {
"type": "string"
},
"readOnly": {
"type": "boolean"
}
},
"required": [
"aclContent",
"description",
"id",
"ipVersion",
"name",
"readOnly"
],
"type": "object"
}
},
"ise:index/getUserIdentityGroup:getUserIdentityGroup": {
"inputs": {
"description": "A collection of arguments for invoking getUserIdentityGroup.\n",
"properties": {
"id": {
"type": "string"
},
"name": {
"type": "string"
}
},
"type": "object"
},
"outputs": {
"description": "A collection of values returned by getUserIdentityGroup.\n",
"properties": {
"description": {
"type": "string"
},
"id": {
"type": "string"
},
"name": {
"type": "string"
},
"parent": {
"type": "string"
}
},
"required": [
"description",
"id",
"name",
"parent"
],
"type": "object"
}
}
}
}
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment