09-28-2022 02:00 PM
Hi -
I cant get the following EEM applet to work on a CAT9K. Basically , I am trying to workaround a DNAC bug where the EEM applet checks to see if a command is present in the configuration and then changes the configuration. The applet I have configured is:
event manager applet DNAC_PKI_CONFIG_CHANGE authorization bypass
event timer watchdog time 60
action 002 cli command "enable"
action 003 cli command "sh running-config | section ^crypto pki trustpoint DNAC-CA$"
action 004 regexp "^revocation-check crl none$" "$_cli_result"
action 005 if $_regexp_result eq "1"
action 006 cli command "config t"
action 007 cli command "crypto pki trustpoint DNAC-CA"
action 008 cli command "revocation-check none"
action 009 cli command "end"
action 010 cli command "wr mem"
action 011 else
action 012 end
I was initially trying to trigger the script under a CLI event but dont know if this is possible when running NETCONF between switch and DNAC. I can see the applet runs every minute but not seeing the config getting changed.
Solved! Go to Solution.
09-29-2022 07:59 AM
I have since rectified this!
09-29-2022 07:59 AM
I have since rectified this!
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide