Forum Discussion
Walter_Kacynski
Cirrostratus
Cirrostratusng_export with Per Request Policies
Does anyone know if ng_export cli will work with per request policies (PRP). Access Profile Export utility v14.1 Usage: ng_export [-t|-type access_policy] <name> <filename> [-p|-partition <pa...
You can already do it with normal policies, no reverse engineering needed.
However that ID 755148 refers to API Protection policies. These are the same as PRPs, but they have a different "type" (I'm sure you noticed already).
The other thing is:
The way I do this usually when I'm creating labs or other material is to walk the configuration hirearchy (policy items, agents, policy, profile, customization groups) and then turn it into a pile of TMSH commands, then use the commands to create a policy. It's kind of fragile between versions, but mostly works fine.
Walter_KacynskiCirrostratus
CirrostratusAlas, ng_export, ng_import, ng_profile has two "-t" options
-t access_policy = per-Request policies
-t profile_access = per-Session policies
I don't know who comes up with these names and I was able to generate tarballs of both types 😁
Also, the help text for ng_export is not complete, so reading the PHP utilities is somewhat helpful as there is parameter validation.