Chapter 5 Understanding My Workspace

Importing and Exporting ACS Objects through the Web Interface

Related Topic

ACS 5.x Policy Model

Importing and Exporting ACS Objects through the Web Interface

You can use the import functionality in ACS to add, update, or delete multiple ACS objects at the same time. ACS uses a comma-separated values (CSV) file to perform these bulk operations. This .csv file is called an import file. ACS provides a separate .csv template for add, update, and delete operations for each ACS object.

The first record in the .csv file is the header record from the template that contains column (field) names. You must download these templates from the ACS web interface. The header record from the template must be included in the first row of any .csv file that you import.

Note You cannot use the same template to import all the ACS objects. You must download the template that is designed for each ACS object and use the corresponding template while importing the objects. However, you can use the export file of a particular object, retain the header and update the data, and use it as the import file of the same object.

You can use the export functionality to create a .csv file that contains all the records of a particular object type that are available in the ACS internal store.

You must have CLI administrator-level access to perform import and export operations. Additionally:

To import ACS configuration data, you need CRUD permissions for the specific configuration object.

To export data to a remote repository, you need read permission for the specific configuration object.

This functionality is not available for all ACS objects. This section describes the supported ACS objects and how to create the import files.

This section contains:

Supported ACS Objects, page 5-18

Creating Import Files, page 5-20

Supported ACS Objects

While ACS 5.3 allows you to perform bulk operations (add, update, delete) on ACS objects using the import functionality, you cannot import all ACS objects. The import functionality in ACS 5.3 supports the following ACS objects:

Users

Hosts

Network Devices

Identity Groups

NDGs

Downloadable ACLs

Command Sets

 

User Guide for Cisco Secure Access Control System 5.3

5-18

OL-24201-01

Page 114
Image 114
Cisco Systems OL-24201-01 manual ACS 5.x Policy Model, Supported ACS Objects, Creating Import Files