| Server IP : 85.214.239.14 / Your IP : 3.15.148.210 Web Server : Apache/2.4.62 (Debian) System : Linux h2886529.stratoserver.net 4.9.0 #1 SMP Tue Jan 9 19:45:01 MSK 2024 x86_64 User : www-data ( 33) PHP Version : 7.4.18 Disable Function : pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals,pcntl_unshare, MySQL : OFF | cURL : OFF | WGET : ON | Perl : ON | Python : ON | Sudo : ON | Pkexec : OFF Directory : /usr/lib/python3/dist-packages/ansible_collections/cisco/ise/playbooks/ |
Upload File : |
---
- hosts: ise_servers
gather_facts: false
tasks:
- name: Get sgt src
cisco.ise.sgt_info:
ise_hostname: "{{ ise_hostname }}"
ise_username: "{{ ise_username }}"
ise_password: "{{ ise_password }}"
ise_verify: "{{ ise_verify }}"
filter: name.EQ.Quarantined_Systems
register: sgt_src
- name: Get sgt dest
cisco.ise.sgt_info:
ise_hostname: "{{ ise_hostname }}"
ise_username: "{{ ise_username }}"
ise_password: "{{ ise_password }}"
ise_verify: "{{ ise_verify }}"
filter: name.EQ.Guests
register: sgt_dest
- name: Print sgt_src
ansible.builtin.debug:
var: sgt_src['ise_response'][0]
- name: Print sgt_dest
ansible.builtin.debug:
var: sgt_dest['ise_response'][0]
# - name: Get by id
# cisco.ise.egress_matrix_cell_info:
# ise_hostname: "{{ ise_hostname }}"
# ise_username: "{{ ise_username }}"
# ise_password: "{{ ise_password }}"
# ise_verify: "{{ ise_verify }}"
# id: d704e911-a916-11eb-8830-2ec507028ea8
# register: result
- name: Create or update an egress_matrix_cell
cisco.ise.egress_matrix_cell:
ise_hostname: "{{ ise_hostname }}"
ise_username: "{{ ise_username }}"
ise_password: "{{ ise_password }}"
ise_verify: "{{ ise_verify }}"
state: present
name: "{{ sgt_src['ise_response'][0]['name']}}-{{sgt_dest['ise_response'][0]['name']}}"
description: Updated by import utility (3).
sourceSgtId: "{{ sgt_src['ise_response'][0]['id']}}"
destinationSgtId: "{{ sgt_dest['ise_response'][0]['id']}}"
matrixCellStatus: ENABLED
defaultRule: DENY_IP
when:
- sgt_src['ise_response'] is defined
- sgt_dest['ise_response'] is defined
- sgt_src['ise_response']|length == 1
- sgt_dest['ise_response']|length == 1
- sgt_src['ise_response'][0] is defined
- sgt_dest['ise_response'][0] is defined
- sgt_src['ise_response'][0]['id'] is defined
- sgt_dest['ise_response'][0]['id'] is defined
register: result
- name: Print result
ansible.builtin.debug:
var: result