We're using Prime Infrastructure 3.1 and while I've only ever used Prime to manage WLCs before, my understanding is that as of v3, it does a whole lot more that WLCs. Trouble is, I just cant find example of what I'm attempting to do. My only real reference at this point has been the Prime Infrastructure Admin, User, and Reference Guides. If Prime is NOT the tool I should use, then that would be good to know.
My biggest complaint about what I've seen is that Prime would be great for building something from scratch, Simply create all your templates, and start deploying new gear.
Problem is, I already have a deployed network, and I want it all to be audited and compliant, not just the new stuff.
Examples of what I'd like to do is as follows:
Verify that for each device (router, switch, WLC, etc...), I have hundreds, btw.
On a scheduled basis (hourly, maybe) if necessary, have a current configuration saved in a centralized location (similar to RANCID, back in the day)
Check configs for:
disabled ssh v1
enabled ssh v2
existence of specific local accounts
note deviation of any non-standard local accounts
ensure security settings (password-encryption, hashing techniques are standard per platform)
possible collect hashes, verify that they are hashing known passwords.
I was thinking that the Compliance and Audit module would do all this but it appears to only handle WLCs.
If I have to, I can easily start running something like RANCID and writing/running python scripts, but this sound like the sort of thing that Prime Infrastructure should be able to do. Also, other than one 5-day class., "Managing Enterprise Networks with Cisco Prime", which is only offered by Learning Services in a few locations, I can't find any formal training in this product. It is also not clear to me what version of Prime software is featured in this class.
PRTG system in place running other sensors on the same host, which are working. Ive added syslog receiver sensor and receiving PRTG data from switch that increases drops, errors and warning stats that disappear after a few minutes. Within mess...
Hi, here is an example how to configure IP-NAT, GRE, IPSEC. I've seen plenty of questions and this might be a good solution! (Mostly the use of commands that might remind u) IP NAT======================================================================...
Hi everyone.I have a problem in my Network.So i have 3 routers and a firewall in my topology. I have configured OSPF and all routers works expect R3 (see in the image below)When I watch my neignbor in R3 it says :192.168.7.7 1 INIT/DROTHER 00:00:37 10.0.2...
Host Onboarding is the term used when connecting an endpoint (hosts , IOT , Other devices) to the fabric , and can be accomplished in a couple of ways.One option is the "static" approach as oppose to the dynamic and secure approach using&nbs...