New Template: cisco_ios_show_authentication_sessions_method_details (#…

…1596) * cisco_ios_show_authentication_sessions_method_details: New template (cherry picked from commit 38e907a) * New template: cisco_ios_show_authentication_sessions_method_details
networktocode · Feb 8, 2024 · c522abe · c522abe
1 parent 82f1e79
commit c522abe
Show file tree

Hide file tree

Showing 6 changed files with 362 additions and 0 deletions.
diff --git a/ntc_templates/templates/cisco_ios_show_authentication_sessions_method_details.textfsm b/ntc_templates/templates/cisco_ios_show_authentication_sessions_method_details.textfsm
@@ -0,0 +1,88 @@
+Value INTERFACE (\S+)
+Value MAC_ADDRESS (\S+)
+Value IPV4_ADDRESS (\S+)
+Value IPV6_ADDRESS (\S+)
+Value USERNAME (\S+)
+Value DEVICE_TYPE (\S+)
+Value DEVICE_NAME (\S+)
+Value STATUS (\S+)
+Value DOMAIN (\S+)
+Value OPERATIONAL_HOST_MODE (\S+)
+Value OPERATIONAL_CONTROL_DIR (\S+)
+Value SESSION_TIMEOUT (\S+)
+Value TIMEOUT_ACTION (\S+)
+Value ACCOUNTING_UPDATE_SECONDS (\d+)
+Value ACCOUNTING_UPDATE_REMAINING_SECONDS (\d+)
+Value CURRENT_POLICY (\S+)
+Value SERVER_POLICY_VLAN_GROUP (\d+)
+Value List SERVER_POLICY_SGT (\d+)
+Value SERVER_POLICY_VN (\S+)
+Value SERVER_SESSION_TIMEOUT (\d+)
+Value SERVER_TEMPLATE (\S+)
+Value RESULTANT_POLICY_VLAN_GROUP (\d+)
+Value List RESULTANT_POLICY_SGT (\d+)
+Value RESULTANT_POLICY_VN (\S+)
+Value List METHOD_TYPE_LIST (\S+)
+Value List METHOD_STATE_LIST (.*)
+
+Start
+  ^\s*Interface: -> Continue.Record
+  ^\s*Interface:\s+${INTERFACE}
+  ^\s*IIF-ID:\s+.*
+  ^\s*MAC Address:\s+${MAC_ADDRESS}
+  ^\s*IPv6 Address:\s+${IPV4_ADDRESS}
+  ^\s*IPv4 Address:\s+${IPV6_ADDRESS}
+  ^\s*User-Name:\s+${USERNAME}
+  ^\s*Device-type:\s+${DEVICE_TYPE}
+  ^\s*Device-name:\s+${DEVICE_NAME}
+  ^\s*Status:\s+${STATUS}
+  ^\s*Domain:\s+${DOMAIN}
+  ^\s*Oper\s+host\s+mode:\s+${OPERATIONAL_HOST_MODE}
+  ^\s*Oper\s+control\s+dir:\s+${OPERATIONAL_CONTROL_DIR}
+  ^\s*Session\s+timeout:\s+${SESSION_TIMEOUT}
+  ^\s*Timeout\s+action:\s+${TIMEOUT_ACTION}
+  ^\s*Acct\s+update\s+timeout:\s+${ACCOUNTING_UPDATE_SECONDS}s\s+\(local\),\s+Remaining:\s+${ACCOUNTING_UPDATE_REMAINING_SECONDS}s
+  ^\s*Common\s+Session\s+ID:\s+.*
+  ^\s*Acct\s+Session\s+ID:\s+.*
+  ^\s*Handle:\s+.*
+  ^\s*Current\s+Policy:\s+${CURRENT_POLICY}
+  ^\s*Local\s+Policies: -> LOCAL_POLICIES
+  ^Server\s+Policies: -> SERVER_POLICIES
+  ^Resultant\s+Policies: -> RESULTANT_POLICIES
+  ^-+\s*$$
+  ^\s*$$
+  ^. -> Error
+
+LOCAL_POLICIES
+  ^\s*$$
+  ^Server Policies: -> SERVER_POLICIES
+  ^Resultant\s+Policies: -> RESULTANT_POLICIES
+  ^. -> Error LocalPolicy
+
+SERVER_POLICIES
+  ^\s*Vlan\s+Group:\s+Vlan:\s+${SERVER_POLICY_VLAN_GROUP}
+  ^\s*SGT\s+Value:\s+${SERVER_POLICY_SGT}
+  ^\s*VN\s+Value:\s+${SERVER_POLICY_VN}
+  ^Resultant\s+Policies: -> RESULTANT_POLICIES
+  ^\s*Method\s+status\s+list: -> METHOD_STATUS
+  ^\s*Session-Timeout:\s+${SERVER_SESSION_TIMEOUT} sec
+  ^\s*Interface\s+Template:\s+${SERVER_TEMPLATE}
+  ^-+\s*$$ -> Start
+  ^\s*$$
+  ^. -> Error ServerPolicy
+
+RESULTANT_POLICIES
+  ^\s*Vlan\s+Group:\s+Vlan:\s+${RESULTANT_POLICY_VLAN_GROUP}
+  ^\s*SGT\s+Value:\s+${RESULTANT_POLICY_SGT}
+  ^\s*VN\s+Value:\s+${RESULTANT_POLICY_VN}
+  ^-+\s*$$ -> Start
+  ^\s*Method\s+status\s+list: -> METHOD_STATUS
+  ^\s*$$
+  ^. -> Error ResultantPolicy
+
+METHOD_STATUS
+  ^\s+Method\s+State
+  ^\s+${METHOD_TYPE_LIST}\s+${METHOD_STATE_LIST}\s*$$
+  ^-+\s*$$ -> Start
+  ^\s*$$
+  ^. -> Error MethodStatus
diff --git a/ntc_templates/templates/index b/ntc_templates/templates/index
@@ -205,6 +205,7 @@ cisco_ftd_show_vpn-sessiondb_anyconnect.textfsm, .*, cisco_ftd, sh[[ow]] vpn-[[s
 
 cisco_ios_show_module.textfsm:cisco_ios_show_module_status.textfsm:cisco_ios_show_module_submodule.textfsm:cisco_ios_show_module_online_diag.textfsm, .*, cisco_ios, sh[[ow]] mod[[ule]]
 cisco_ios_show_switch_detail.textfsm:cisco_ios_show_switch_detail_stack_ports.textfsm, .*, cisco_ios, sh[[ow]] sw[[itch]] d[[etail]]
+cisco_ios_show_authentication_sessions_method_details.textfsm, .*, cisco_ios, show authen[[tication]] ses[[sions]] met[[hod]](\s+d[[ot1x]]|\s+m[[ab]])? det[[ails]]
 cisco_ios_show_running-config_partition_access-list.textfsm, .*, cisco_ios, sh[[ow]] ru[[nning-config]] p[[artition]] a[[ccess-list]]
 cisco_ios_show_ip_bgp_neighbors_advertised-routes.textfsm, .*, cisco_ios, sh[[ow]] ip bgp nei[[ghbors]](\s+\d+\.\d+\.\d+\.\d+)? adv[[ertised-routes]]
 cisco_ios_show_running-config_partition_route-map.textfsm, .*, cisco_ios, sh[[ow]] ru[[nning-config]] p[[artition]] route-[[map]]

diff --git a/..._sessions_method_details/cisco_ios_show_authentication_sessions_method_mab_details_01.raw b/..._sessions_method_details/cisco_ios_show_authentication_sessions_method_mab_details_01.raw
@@ -0,0 +1,109 @@
+
+            Interface:  TenGigabitEthernet2/0/39
+               IIF-ID:  0x16191B90
+          MAC Address:  0060.aaaa.bbbb
+         IPv6 Address:  Unknown
+         IPv4 Address:  10.11.11.117
+            User-Name:  00-60-AA-AA-BB-BB
+          Device-type:  IP-Phone
+          Device-name:  Unknown Device
+               Status:  Authorized
+               Domain:  VOICE
+       Oper host mode:  multi-auth
+     Oper control dir:  both
+      Session timeout:  N/A
+  Acct update timeout:  172800s (local), Remaining: 77097s
+    Common Session ID:  123414AC000066635A83835D
+      Acct Session ID:  0x00002dfd
+               Handle:  0xb100018c
+       Current Policy:  PMAP_DefaultWDot1xClosedAuth_1X
+
+Local Policies:
+
+Server Policies:
+             VN Value:  STAFF_VN
+           Vlan Group:  Vlan: 1133
+            SGT Value:  20
+            SGT Value:  20
+
+Resultant Policies:
+             VN Value:  STAFF_VN
+           Vlan Group:  Vlan: 1133
+            SGT Value:  20
+            SGT Value:  20
+
+Method status list:
+       Method           State
+        dot1x           Authc Success
+          mab           Stopped
+
+----------------------------------------
+
+            Interface:  GigabitEthernet1/0/21
+               IIF-ID:  0x1239EA14
+          MAC Address:  707d.b9aa.bbcc
+         IPv6 Address:  fe80::727d:abcd:abcd:abcd
+         IPv4 Address:  172.22.5.2
+            User-Name:  70-7D-B9-AA-BB-CC
+          Device-type:  Cisco-AIR-LAP
+          Device-name:  cisco AIR-AP2802I-Z-K9
+               Status:  Authorized
+               Domain:  DATA
+       Oper host mode:  multi-auth
+     Oper control dir:  both
+      Session timeout:  N/A
+  Acct update timeout:  172800s (local), Remaining: 145579s
+    Common Session ID:  118214AC11110C6A86D02356
+      Acct Session ID:  0x00001da4
+               Handle:  0x5c000c60
+       Current Policy:  PMAP_DefaultWiredDot1xClosedAuth_1X
+
+
+Local Policies:
+
+Server Policies:
+             VN Value:  INFRA_VN
+           Vlan Group:  Vlan: 1000
+            SGT Value:  35
+            SGT Value:  35
+
+
+Method status list:
+       Method           State
+        dot1x           Stopped
+          mab           Authc Success
+
+----------------------------------------
+
+            Interface:  GigabitEthernet2/0/1
+               IIF-ID:  0x12776C48
+          MAC Address:  3814.28aa.bbcc
+         IPv6 Address:  fe80::75e2:aaaa:bbbb:cccc
+         IPv4 Address:  10.11.12.83
+            User-Name:  DOMAIN\\koli
+          Device-type:  Microsoft-Workstation
+          Device-name:  IDC-2AE53D34
+               Status:  Authorized
+               Domain:  DATA
+       Oper host mode:  multi-auth
+     Oper control dir:  both
+      Session timeout:  N/A
+  Acct update timeout:  172800s (local), Remaining: 169278s
+    Common Session ID:  118214AC000017C56C52F101
+      Acct Session ID:  0x00003a04
+               Handle:  0x0e0007c3
+       Current Policy:  PMAP_DefaultWiredDot1xClosedAuth_1X
+
+
+Local Policies:
+
+Server Policies:
+             VN Value:  STAFF_VN
+           Vlan Group:  Vlan: 1133
+            SGT Value:  20
+            SGT Value:  20
+
+
+Method status list:
+       Method           State
+        dot1x           Authc Success
diff --git a/..._sessions_method_details/cisco_ios_show_authentication_sessions_method_mab_details_01.yml b/..._sessions_method_details/cisco_ios_show_authentication_sessions_method_mab_details_01.yml
@@ -0,0 +1,98 @@
+---
+parsed_sample:
+  - accounting_update_remaining_seconds: "77097"
+    accounting_update_seconds: "172800"
+    current_policy: "PMAP_DefaultWDot1xClosedAuth_1X"
+    device_name: "Unknown"
+    device_type: "IP-Phone"
+    domain: "VOICE"
+    interface: "TenGigabitEthernet2/0/39"
+    ipv4_address: "Unknown"
+    ipv6_address: "10.11.11.117"
+    mac_address: "0060.aaaa.bbbb"
+    method_state_list:
+      - "Authc Success"
+      - "Stopped"
+    method_type_list:
+      - "dot1x"
+      - "mab"
+    operational_control_dir: "both"
+    operational_host_mode: "multi-auth"
+    resultant_policy_sgt:
+      - "20"
+      - "20"
+    resultant_policy_vlan_group: "1133"
+    resultant_policy_vn: "STAFF_VN"
+    server_policy_sgt:
+      - "20"
+      - "20"
+    server_policy_vlan_group: "1133"
+    server_policy_vn: "STAFF_VN"
+    server_session_timeout: ""
+    server_template: ""
+    session_timeout: "N/A"
+    status: "Authorized"
+    timeout_action: ""
+    username: "00-60-AA-AA-BB-BB"
+  - accounting_update_remaining_seconds: "145579"
+    accounting_update_seconds: "172800"
+    current_policy: "PMAP_DefaultWiredDot1xClosedAuth_1X"
+    device_name: "cisco"
+    device_type: "Cisco-AIR-LAP"
+    domain: "DATA"
+    interface: "GigabitEthernet1/0/21"
+    ipv4_address: "fe80::727d:abcd:abcd:abcd"
+    ipv6_address: "172.22.5.2"
+    mac_address: "707d.b9aa.bbcc"
+    method_state_list:
+      - "Stopped"
+      - "Authc Success"
+    method_type_list:
+      - "dot1x"
+      - "mab"
+    operational_control_dir: "both"
+    operational_host_mode: "multi-auth"
+    resultant_policy_sgt: []
+    resultant_policy_vlan_group: ""
+    resultant_policy_vn: ""
+    server_policy_sgt:
+      - "35"
+      - "35"
+    server_policy_vlan_group: "1000"
+    server_policy_vn: "INFRA_VN"
+    server_session_timeout: ""
+    server_template: ""
+    session_timeout: "N/A"
+    status: "Authorized"
+    timeout_action: ""
+    username: "70-7D-B9-AA-BB-CC"
+  - accounting_update_remaining_seconds: "169278"
+    accounting_update_seconds: "172800"
+    current_policy: "PMAP_DefaultWiredDot1xClosedAuth_1X"
+    device_name: "IDC-2AE53D34"
+    device_type: "Microsoft-Workstation"
+    domain: "DATA"
+    interface: "GigabitEthernet2/0/1"
+    ipv4_address: "fe80::75e2:aaaa:bbbb:cccc"
+    ipv6_address: "10.11.12.83"
+    mac_address: "3814.28aa.bbcc"
+    method_state_list:
+      - "Authc Success"
+    method_type_list:
+      - "dot1x"
+    operational_control_dir: "both"
+    operational_host_mode: "multi-auth"
+    resultant_policy_sgt: []
+    resultant_policy_vlan_group: ""
+    resultant_policy_vn: ""
+    server_policy_sgt:
+      - "20"
+      - "20"
+    server_policy_vlan_group: "1133"
+    server_policy_vn: "STAFF_VN"
+    server_session_timeout: ""
+    server_template: ""
+    session_timeout: "N/A"
+    status: "Authorized"
+    timeout_action: ""
+    username: "DOMAIN\\\\koli"
diff --git a/..._sessions_method_details/cisco_ios_show_authentication_sessions_method_mab_details_02.raw b/..._sessions_method_details/cisco_ios_show_authentication_sessions_method_mab_details_02.raw
@@ -0,0 +1,33 @@
+            Interface:  GigabitEthernet1/0/31
+               IIF-ID:  0x18438F31
+          MAC Address:  cc96.abcd.1234
+         IPv6 Address:  Unknown
+         IPv4 Address:  10.10.10.190
+            User-Name:  CC-96-AA-BB-CC-DD
+          Device-type:  Microsoft-Workstation
+          Device-name:  MOED-9212345
+               Status:  Authorized
+               Domain:  DATA
+       Oper host mode:  multi-auth
+     Oper control dir:  both
+      Session timeout:  43200s (server), Remaining: 3574s
+       Timeout action:  Reauthenticate
+  Acct update timeout:  172800s (local), Remaining: 89824s
+    Common Session ID:  0A4014AC0000002F555FD224
+      Acct Session ID:  0x00000027
+               Handle:  0xe0000025
+       Current Policy:  PMAP_DefaultWiredDot1xClosedAuth_1X
+
+Local Policies:
+
+Server Policies:
+             VN Value:  WALKUPED_VN
+      Session-Timeout: 43200 sec
+           Vlan Group:  Vlan: 1011
+   Interface Template:  PXE-ClosedMode-Template
+            SGT Value:  40
+
+Method status list:
+       Method           State
+        dot1x           Stopped
+          mab           Authc Success
diff --git a/..._sessions_method_details/cisco_ios_show_authentication_sessions_method_mab_details_02.yml b/..._sessions_method_details/cisco_ios_show_authentication_sessions_method_mab_details_02.yml
@@ -0,0 +1,33 @@
+---
+parsed_sample:
+  - accounting_update_remaining_seconds: "89824"
+    accounting_update_seconds: "172800"
+    current_policy: "PMAP_DefaultWiredDot1xClosedAuth_1X"
+    device_name: "MOED-9212345"
+    device_type: "Microsoft-Workstation"
+    domain: "DATA"
+    interface: "GigabitEthernet1/0/31"
+    ipv4_address: "Unknown"
+    ipv6_address: "10.10.10.190"
+    mac_address: "cc96.abcd.1234"
+    method_state_list:
+      - "Stopped"
+      - "Authc Success"
+    method_type_list:
+      - "dot1x"
+      - "mab"
+    operational_control_dir: "both"
+    operational_host_mode: "multi-auth"
+    resultant_policy_sgt: []
+    resultant_policy_vlan_group: ""
+    resultant_policy_vn: ""
+    server_policy_sgt:
+      - "40"
+    server_policy_vlan_group: "1011"
+    server_policy_vn: "WALKUPED_VN"
+    server_session_timeout: "43200"
+    server_template: "PXE-ClosedMode-Template"
+    session_timeout: "43200s"
+    status: "Authorized"
+    timeout_action: "Reauthenticate"
+    username: "CC-96-AA-BB-CC-DD"