Is it also possible to create ACL with APIC-EM and are there any examples Or do I have to switch to another product from the ‘ONE’-portfolio . could not find the permitted values for the actions in the policy API and ‘DENY’ does not seem to work.Also checked the documents on the cisco website, but was unable to find a clear description for the capabilities of APIC-EM, especially the word ‘policy’ they often use in the descriptions and videos.
Please take a look this learning lab see if you can find what you want.
ACL are not supported in policy in 1.3. We did have them in EFT code. The policy model will be extended next year
- Is there another product of the cisco ONE-portfolio which is yet able do distribute ACL. APIC/ACI can clearly do it, but we would need nexus switches for this.
There's the possibility to use Cisco ISE with Downloadable ACLs. (ACL based on Radius)
Cisco Identity Services Engine Administrator Guide, Release 2.1 - Manage Authorization Policies and Profiles [Cisco Ide…
Then there's APIs on Cisco Prime Infra for using templates (ACL based on CLI commands)
Template based provisioning with Cisco Prime Infrastructure – Part 1
Both products are included when buying Cisco One for Access.
Please sign in to leave a comment.