Home > Cisco > Network Hardware > Cisco Prime Nerk 43 User Guide

Cisco Prime Nerk 43 User Guide

Add to Favourites
    Download as PDF

    Here you can view all the pages of manual Cisco Prime Nerk 43 User Guide. The Cisco manuals for Network Hardware are available online for free. You can easily download all the documents as PDF.

    Overview View all the pages Comments

    Page 211

    Page 211 9-63 Cisco Prime Network 4.3.2 User Guide Chapter 9 Manage Device Configurations and Software Images Making Sure Devices Conform to Policies Using Compliance Audit Violations by Device Figure 9-18 displays the violations at a device level. Table 9-6 Job Details and Violations Summary- Fields Field Description Audited/Non-Audited DevicesThis displays the number of audited and non-audited devices. For more details on devices, click the hyperlinked count of audited and non-audited devices. The... 
      
9-63
Cisco Prime Network 4.3.2 User Guide
Chapter 9      Manage Device Configurations and Software Images
  Making Sure Devices Conform to Policies Using Compliance Audit
Violations by Device
Figure 9-18 displays the violations at a device level.
Table 9-6 Job Details and Violations Summary- Fields
Field Description
Audited/Non-Audited 
DevicesThis displays the number of audited and non-audited devices. For more details on devices, click 
the hyperlinked count of audited and non-audited devices. The...

    Page 212

    Page 212 9-64 Cisco Prime Network 4.3.2 User Guide EDCS-1524415 Chapter 9 Manage Device Configurations and Software Images Making Sure Devices Conform to Policies Using Compliance Audit Figure 9-18 Violations by Device Select the devices that require the fix CLI to be applied. The check box for a device will be enabled when: a fix CLI is available for the device. the violation is not fixed on the device. no fix job is running for the violation. Click the running config link under the Configurations... 
      
9-64
Cisco Prime Network 4.3.2 User Guide
EDCS-1524415
Chapter 9      Manage Device Configurations and Software Images
  Making Sure Devices Conform to Policies Using Compliance Audit
Figure 9-18 Violations by Device
Select the devices that require the fix CLI to be applied. The check box for a device will be enabled 
when:
a fix CLI is available for the device.
the violation is not fixed on the device.
no fix job is running for the violation.
Click the running config link under the Configurations...

    Page 213

    Page 213 9-65 Cisco Prime Network 4.3.2 User Guide Chapter 9 Manage Device Configurations and Software Images Making Sure Devices Conform to Policies Using Compliance Audit Figure 9-19 Fix Type Rule Input Preview Fix Commands Figure 9-20 displays the preview of the fix CLI that will be applied to the device when you schedule a fix job. If you are using the predefined command that is available in the Command Manager to fix the violation, the command builder script name with a hyperlink is displayed.... 
      
9-65
Cisco Prime Network 4.3.2 User Guide
Chapter 9      Manage Device Configurations and Software Images
  Making Sure Devices Conform to Policies Using Compliance Audit
Figure 9-19 Fix Type Rule Input
Preview Fix Commands
Figure 9-20 displays the preview of the fix CLI that will be applied to the device when you schedule a 
fix job. If you are using the predefined command that is available in the Command Manager to fix the 
violation, the command builder script name with a hyperlink is displayed....

    Page 214

    Page 214 9-66 Cisco Prime Network 4.3.2 User Guide EDCS-1524415 Chapter 9 Manage Device Configurations and Software Images Using Compliance Audit for Device Compliance Figure 9-21 Schedule You can view the status of a fix job after the job completes. Click the hyperlinked status to view the results of the fix job. Using Compliance Audit for Device Compliance NoteStarting in Prime Network 4.1, Configuration Audit is being replaced by Compliance Audit. In Prime Network 4.3.2, Configuration Audit is... 
      
9-66
Cisco Prime Network 4.3.2 User Guide
EDCS-1524415
Chapter 9      Manage Device Configurations and Software Images
  Using Compliance Audit for Device Compliance
Figure 9-21 Schedule
You can view the status of a fix job after the job completes. Click the hyperlinked status to view the 
results of the fix job.
Using Compliance Audit for Device Compliance
NoteStarting in Prime Network 4.1, Configuration Audit is being replaced by Compliance Audit. In Prime 
Network 4.3.2, Configuration Audit is...

    Page 215

    Page 215 9-67 Cisco Prime Network 4.3.2 User Guide Chapter 9 Manage Device Configurations and Software Images Using Compliance Audit for Device Compliance Sample Compliance Policy The following example shows a policy that performs audit for BGP configuration for a Cisco IOS router: #BGP Compliance Audit router bgp (.*) neighbor (.*) remote-as (.*) address-family ipv4 If you want an audit check for specific BGP AS or neighbor IP address, the above CLI can be changed accordingly. For example:... 
      
9-67
Cisco Prime Network 4.3.2 User Guide
Chapter 9      Manage Device Configurations and Software Images
  Using Compliance Audit for Device Compliance
Sample Compliance Policy
The following example shows a policy that performs audit for BGP configuration for a Cisco IOS router:
#BGP Compliance Audit
router bgp (.*)
   neighbor (.*) remote-as (.*)
   address-family ipv4
If you want an audit check for specific BGP AS or neighbor IP address, the above CLI can be changed 
accordingly. For example:...

    Page 216

    Page 216 9-68 Cisco Prime Network 4.3.2 User Guide EDCS-1524415 Chapter 9 Manage Device Configurations and Software Images Using Compliance Audit for Device Compliance Step 1In the Configuration Policies page, click the Create icon. Step 2Provide the policy name and description. Step 3Enter the CLI commands to set up a baseline configuration for that policy. This can also be a valid, Java-based regular expression. See Ta b l e 9 - 7 for sample configuration CLIs. Step 4Make sure you follow the... 
      
9-68
Cisco Prime Network 4.3.2 User Guide
EDCS-1524415
Chapter 9      Manage Device Configurations and Software Images
  Using Compliance Audit for Device Compliance
Step 1In the Configuration Policies page, click the Create icon.
Step 2Provide the policy name and description.
Step 3Enter the CLI commands to set up a baseline configuration for that policy. This can also be a valid, 
Java-based regular expression. See Ta b l e 9 - 7 for sample configuration CLIs.
Step 4Make sure you follow the...

    Page 217

    Page 217 9-69 Cisco Prime Network 4.3.2 User Guide Chapter 9 Manage Device Configurations and Software Images Using Compliance Audit for Device Compliance Step 1Choose Compliance Audit > Basic Audit. The Select Configuration Policies page lists the available configuration policies. You can search the configuration policies by using CLI strings. Step 2Select the desired configuration policy from the available list and click Next. Step 3In the Select Devices page, select the devices that must be audited... 
      
9-69
Cisco Prime Network 4.3.2 User Guide
Chapter 9      Manage Device Configurations and Software Images
  Using Compliance Audit for Device Compliance
Step 1Choose Compliance Audit > Basic Audit. The Select Configuration Policies page lists the available 
configuration policies. You can search the configuration policies by using CLI strings.
Step 2Select the desired configuration policy from the available list and click Next.
Step 3In the Select Devices page, select the devices that must be audited...

    Page 218

    Page 218 9-70 Cisco Prime Network 4.3.2 User Guide EDCS-1524415 Chapter 9 Manage Device Configurations and Software Images Using Compliance Audit for Device Compliance Figure 9-23 Compliance Audit Job Details Step 2 Click on the hyperlinked Status (Pass/Fail icon) in the Job Results table. Or, click the hyperlinked Success or Failure hyperlink in the Result field of the History table. The Compliance Audit Result dialog box displays the audit result with matching commands (for ‘Audit Pass’) and... 
      
9-70
Cisco Prime Network 4.3.2 User Guide
EDCS-1524415
Chapter 9      Manage Device Configurations and Software Images
  Using Compliance Audit for Device Compliance
Figure 9-23 Compliance Audit Job Details
Step 2
Click on the hyperlinked Status (Pass/Fail icon) in the Job Results table. Or, click the hyperlinked 
Success or Failure hyperlink in the Result field of the History table. The Compliance Audit Result dialog 
box displays the audit result with matching commands (for ‘Audit Pass’) and...

    Page 219

    Page 219 9-71 Cisco Prime Network 4.3.2 User Guide Chapter 9 Manage Device Configurations and Software Images Checking Image Management, Device Management, and Compliance Audit Jobs The matching commands are displayed in green (see Figure 9-25), while the discrepancies are displayed in red (see Figure 9-24). For a failed job, the Audit Result section also displays the reason why the audit was not successful as shown in Figure 9-24. Some reasons for audit failure are: Failed to back up running... 
      
9-71
Cisco Prime Network 4.3.2 User Guide
Chapter 9      Manage Device Configurations and Software Images
  Checking Image Management, Device Management, and Compliance Audit Jobs
The matching commands are displayed in green (see Figure 9-25), while the discrepancies are displayed 
in red (see Figure 9-24). For a failed job, the Audit Result section also displays the reason why the audit 
was not successful as shown in Figure 9-24. Some reasons for audit failure are:
Failed to back up running...

    Page 220

    Page 220 9-72 Cisco Prime Network 4.3.2 User Guide EDCS-1524415 Chapter 9 Manage Device Configurations and Software Images NoteWhenever a CCM job is scheduled to run immediately, you will be prompted, either to stay in the same page or to be redirected to the Jobs page. CCM also facilitates automatic e-mail notification of the status of the CCM jobs upon completion based on the e-mail option you set up in the Image Management Settings page. The notification is sent to a list of e-mail IDs configured... 
      
9-72
Cisco Prime Network 4.3.2 User Guide
EDCS-1524415
Chapter 9      Manage Device Configurations and Software Images
  
NoteWhenever a CCM job is scheduled to run immediately, you will be prompted, either to stay in the same 
page or to be redirected to the Jobs page.
CCM also facilitates automatic e-mail notification of the status of the CCM jobs upon completion based 
on the e-mail option you set up in the Image Management Settings page. The notification is sent to a list 
of e-mail IDs configured...
    Start reading Cisco Prime Nerk 43 User Guide

    Related Manuals for Cisco Prime Nerk 43 User Guide

    All Cisco manuals