Compliance reports - Checking software version

Compliance reports - Checking software version

In this article, we are creating a Compliance report for Cisco IOS nodes to check its software version is 15.2 or not. 

Steps involved are:

  1. Creating the policy
  2. Maping the Cisco_IOS nodes
  3. Creating Rule
  4. Creating the condition
  5. Creating Reports

Creating the policy

Steps to create the policy:
(1) Compliance -> (2) Policies -> (3)New -> (4) Name: Check software version ->(5) Save

Maping the Cisco_IOS nodes

Under Node group 
(1) New -> (2) Cisco_IOS -> (3) Save

Creating Rule

Under Rule:
(1) New -> (2) Name: Check software version -> (3) Vendor: Cisco_IOS -> (4) Save


Creating the condition

Under Condtion:
(1) New -> (2) Type: Software version -> (3) 15.2 (mention the software version you want to check for) ->(4)  Save

Creating Reports

Reports -> Report Name: Check software version -> Report Type: Policies -> Policy Name: Check software version -> Save As


Give around 5-10mins, the results will be ready to view.


    • Related Articles

    • How to create Compliance Reports

      Compliance reports gives us the summarized results of the policies.   Accessing Compliance Reports Creating new report  Steps to create new report Report name: Login Banner Report -> Report type: Policies -> Policy name: Login banner Downloading ...

    • CVE - How to create Compliance policies for Common Vulnerabilities and Exploits.

      Below is an example about building compliance policies from the CVEs.   We will be using CVE-2018-0282 for this case. Creating Policy (1) Compliance -> (2) Policies -> (3) New -> (4) Name: CVE-2018-0282 -> (4) Save Applying to all vendor Nodes Under ...

    • F5 load balancer - How to create compliance policies

      This article is a technical overview of the basics of compliance, and how you can check that a node's config contains the lines you want it to contain. What you need is a node, modeled in NetYCE (CMDB works as well) that has a configuration stored in ...

    • Compliance checks based on commands

      About Command checks NetYCE compliance can be used to validate state of device by issuing show commands. Below is an example where we would be validating NTP status of a Cisco IOS device. Not working CLI output: CoreRouter#show ntp status Clock is ...

    • Network compliance using CIS benchmark

      About CIS Policies: CIS benchmark was created using a consensus review process comprised of subject matter experts. Consensus participants provide perspective from a diverse set of backgrounds including consulting, software development, audit and ...