Link Search Menu Expand Document

Add Endpoint to Identity Group

Workflow #0029

Response Workflow

This workflow adds a static identity group assignment to a MAC address in Cisco Identity Services Engine (ISE). For example, if you’re using identity groups to determine which authorization profile to apply, you can use this response workflow to alter an endpoint’s permissions.

GitHub


Requirements


Workflow Steps

  1. Make sure the observable type provided is supported
  2. Make sure the identity group exists and get its ID
  3. Search for the endpoint by MAC address
  4. Check if the endpoint exists:
    • If it does, update its group assignment
    • If it doesn’t, create it and add it to the identity group

Configuration

  • Set the Identity Group Name local variable to the name of the endpoint identity group to add endpoints to
  • If you want to change the name of this workflow in the pivot menu, change its display name

Targets

Note: If your Cisco ISE deployment is on-premise, you will need a SecureX orchestration remote to use ISE with orchestration.

Target Group: Default TargetGroup

Target Name Type Details Account Keys Notes
Cisco ISE ERS HTTP Endpoint Protocol: HTTPS
Host: ISE Primary Admin Node
Port: 9060
Path: None
ISE_ERS_Credentials  

Account Keys

Account Key Name Type Details Notes
ISE_ERS_Credentials HTTP Basic Authentication Username: ISE Username
Password: ISE Password
Must have ERS Admin permission