NCM Cisco Security Audit

Greetings to the community,

I wanted to ask you about the Cisco Security Audit compliance report for the NCM module. It shows me a series of devices. What would be the criteria for devices to appear there? How do I add or remove nodes from there? Thanks

Find more posts tagged with

ncm

report

Accepted answers

All comments

stuartd

We rarely use the compliance aspect, but the report you talk about will simply select anything branded Cisco and include it.

For you to have any control, you would need to re-create your own report and include/exclude what you want. Personally, I found this short article useful: https://documentation.solarwinds.com/en/success_center/ncm/content/ncm-rules_policies_policy_compliance_rpts.htm but it may just be a 'teaching Granny to suck eggs' thing for you.

cnorborg

So, Compliance reports are a bit confusing. There are 3 parts, the report itself, the policy, and the rules. You need all 3 to get anything. A "report" has some options to it, but mainly is a collection of policies. And Policies in turn, are a collection of rules. Rules is where all the compliance magic takes place.

But, you sound as if you want to see what devices it will run on, or how to control that, and that's in the Policy portion. For the "Cisco Security Audit" Policies, there are 5 of them in the version I'm running, select any one of them and click on edit. Once in there you can see that the "Select nodes" portion is set to a dynamic selection where the vendor is equal to "Cisco". As the other user said, if you want to change this you'd be best off copying it, and editing that one. I think the "NCM Policy Reporter selection criteria" is a default that you can probably edit here, but you're better off copying and editing that copy.

HTH!