Hi,
Our shop is using Tripwire for Network Devices to detect changes to router, switche, and firewall configuration files.
The current Tripwire rule detects and tags all configuration changes as violations.
Would appreciate it if you could direct me to a paper,web site, or book that identifies configuration items that change without user intervention.
For example it looks like "set spantree portinstance cost" and "set spantree portcost" change without user intervention.
Is there a command I can use to retrieve all of the configuration settings that are not controlled by the switch itself?
Also, is anyone aware of an article that itemizes the configuration items that should be monitored for SOX compliance?
thanks,
Walt