Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
181
Views
0
Helpful
2
Replies

IP Device Tracking Compliance Violation on Trunk Port in Cat Center

dylan-johnston
Level 1
Level 1

‎06-03-2025 07:35 AM

Hi all,

My team has currently been running into an issue in Catalyst Center. I'm currently trying to go through our switch inventory and clear up any compliance violations on any switches. I'm running into quite a few devices that are marked non-compliant due to IP Device tracking being disabled or not configured on trunk ports on switches.

From my knowledge and some quick reassuring research, it's been best practice to have device tracking off on trunk ports. However, Catalyst Center seems to insist that they should have this configured.

However, when trying to deploy the recommended compliance fix from catalyst center via the compliance summary dashboard, it seems to do basically nothing and then return to being marked non-compliant. 

Ideally, we'd like to be able to clear any compliance issues we have on our network devices, without having to "acknowledge" them just because they can't be fixed. Finding a way for catalyst center to accept no device tracking on trunk ports would be ideal.

So, if anyone has any insight into what can be done to clear this compliance violation, that would be incredibly appreciated!
(pictures and examples attached)

dylanjohnston_0-1748960778374.pngdylanjohnston_1-1748960809149.png

dylanjohnston_2-1748960965405.png

Labels:
0 Helpful
2 Replies 2

marce1000
Hall of Fame
Hall of Fame

‎06-03-2025 11:17 PM

 

         - FYI : https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvm59016

   M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
0 Helpful

Torbjørn
VIP
VIP

‎06-04-2025 12:04 AM - edited ‎06-04-2025 12:05 AM

I suspect that this is mostly cosmetic. AFAIK you shouldn't have IPDT configured for trunks except for when facing endpoints. If you do have such devices that require a trunk you should just configure it manually as the compliance remediation clearly doesn't work and acknowledge it for the remaining devices.

If you have a large amount of devices making acknowledging the issue not feasible you should create a TAC case 

Happy to help! Please mark as helpful/solution if applicable.
Get in touch: https://torbjorn.dev
0 Helpful
Customers Also Viewed These Support Documents