06-02-2011 09:38 AM
Running LMS3.2.1
A. Can I run a compliance check using RME baseline template to find devices which have non standard SNMP strings IN ADDITION to the correct one?
How will the regular expression look like if we want to say
+ snmp-server community cisco123 ro
+ snmp-server community cisco456 rw 1
- snmp-server community [anything else] ro
- snmp-server community [anything else] rw [#.*#]
B. Is it possible to run a clean up job on the violating devices by using DEPLOY (or NetConfig, etc.)?
Solved! Go to Solution.
06-02-2011 12:33 PM
- [#snmp-server community (?!cisco123|cisco456).*#]
+ snmp-server community cisco123 RO
+ snmp-server community cisco456 RW
From the compliance job result GUI, you can deploy the job directly after verifying the results. When you deploy this template, it will remove any community that does not match "cisco123" or "cisco456", and then add them if the device does not already have them.
06-02-2011 12:33 PM
- [#snmp-server community (?!cisco123|cisco456).*#]
+ snmp-server community cisco123 RO
+ snmp-server community cisco456 RW
From the compliance job result GUI, you can deploy the job directly after verifying the results. When you deploy this template, it will remove any community that does not match "cisco123" or "cisco456", and then add them if the device does not already have them.
06-06-2011 01:04 PM
Thanks for the reply. It is working except for some old switches where the RO and RW are in lower case. It is marking those devices as non-compliant.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide