A Terraform module to configure Cisco ISE.
This module supports an inventory driven approach, where a complete ISE configuration or parts of it are either modeled in one or more YAML files or natively using Terraform variables.
Configuring a Network Access Condition using YAML:
---
ise:
network_access:
policy_elements:
conditions:
- name: CertificateNotExpired
type: LibraryConditionAttributes
is_negate: false
dictionary_name: CERTIFICATE
attribute_name: Is Expired
operator: equals
attribute_value: "False"
module "ise" {
source = "netascode/nac-ise/ise"
version = ">= 0.1.0"
yaml_files = ["network_access_condition.yaml"]
}
Name | Version |
---|---|
terraform | >= 1.3.0 |
ise | >= 0.2.4 |
local | >= 2.3.0 |
time | >= 0.10.0 |
utils | >= 0.2.5 |
Name | Description | Type | Default | Required |
---|---|---|---|---|
model | As an alternative to YAML files, a native Terraform data structure can be provided as well. | map(any) |
{} |
no |
write_default_values_file | Write all default values to a YAML file. Value is a path pointing to the file to be created. | string |
"" |
no |
yaml_directories | List of paths to YAML directories. | list(string) |
[] |
no |
yaml_files | List of paths to YAML files. | list(string) |
[] |
no |
Name | Description |
---|---|
default_values | All default values. |
model | Full model. |
No modules.