I have noticed that RegEx are either true or false based on how they are written within NCM, which is great for most things. The problem I face often is, while working with DISA STIGs, is that sometimes if an entry is missing, I want to check for a different entry to see if my device is still compliant. Perhaps my devices are running different versions of code due to hardware limitations? Who knows what different use cases may arise for others? I honestly believe IF-THEN-ELSE for NCM is a necessary future for configuration management moving forward!
Top Comments