Cisco Community
English
Register
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
247
Views
0
Helpful
1
Replies
Highlighted
Jason Belk
Cisco Employee
Cisco Employee
‎10-13-2020 03:46 PM
‎10-13-2020 03:46 PM

Compliance Report via API

Hi all,

 

Assuming I am using a system install NSO, with typical cisco NEDs, and I issue a RESTCONF call like this:

curl --location --request PATCH 'https://10.10.20.49:443/restconf/data/tailf-ncs:compliance' \
--header 'Content-Type: application/yang-data+xml' \
--header 'Authorization: Basic YWRtaW46YWRtaW4=' \
--header 'Accept: application/yang-data+json' \
--header 'Authorization: Basic ZGV2ZWxvcGVyOkMxc2NvMTIzNDU=' \
--header 'Content-Type: text/plain' \
--data-raw '<compliance xmlns="http://tail-f.com/ns/ncs">
               <reports>
                 <report>
                   <name>DNS_COMPLIANCE_REPORT</name>
                   <compare-template>
                     <template-name>SET-DNS-SERVER</template-name>
                     <device-group>ALL</device-group>
                   </compare-template>
                 </report>
               </reports>
             </compliance>'

and I have my device group set up / device template set up, where does the compliance report go?

 

I know for local install if run via CLI it goes into current working directory, but for system install and using API, not sure where to look? I checked in:

/var/opt/ncs/*

/opt/ncs/current/*

 

Labels:
0 Helpful
Reply
1 ACCEPTED SOLUTION

Accepted Solutions
Highlighted
Jason Belk
Cisco Employee
Cisco Employee
‎10-13-2020 03:53 PM
‎10-13-2020 03:53 PM

I think I might have partially answered my own question. The above API call was to create the report, but not to run it. Here is what I did to run it:

curl --location --request POST 'https://10.10.20.49:443/restconf/data/tailf-ncs:compliance/reports/report=DNS_COMPLIANCE_REPORT/run' \
--header 'Content-Type: application/yang-data+xml' \
--header 'Authorization: Basic YWRtaW46YWRtaW4=' \
--header 'Accept: application/yang-data+json' \
--header 'Authorization: Basic ZGV2ZWxvcGVyOkMxc2NvMTIzNDU=' \
--header 'Content-Type: text/plain' \
--data-raw '<input>
	<outformat>html</outformat>
</input>'

and got the following response:

{
  "tailf-ncs:output": {
    "id": 1,
    "compliance-status": "violations",
    "info": "Checking 8 devices and no services",
    "location": "https://localhost:443/compliance-reports/report_1_developer_1_2020-10-13T15:48:40:0.html"
  }
}

and found it in the running directory state:

[developer@nso compliance-reports]$ ls
report_1_developer_1_2020-10-13T15:48:40:0.html
[developer@nso compliance-reports]$ pwd
/var/opt/ncs/state/compliance-reports
[developer@nso compliance-reports]$

 

 

 

View solution in original post

0 Helpful
Reply
1 REPLY 1
Highlighted
Jason Belk
Cisco Employee
Cisco Employee
‎10-13-2020 03:53 PM
‎10-13-2020 03:53 PM

I think I might have partially answered my own question. The above API call was to create the report, but not to run it. Here is what I did to run it:

curl --location --request POST 'https://10.10.20.49:443/restconf/data/tailf-ncs:compliance/reports/report=DNS_COMPLIANCE_REPORT/run' \
--header 'Content-Type: application/yang-data+xml' \
--header 'Authorization: Basic YWRtaW46YWRtaW4=' \
--header 'Accept: application/yang-data+json' \
--header 'Authorization: Basic ZGV2ZWxvcGVyOkMxc2NvMTIzNDU=' \
--header 'Content-Type: text/plain' \
--data-raw '<input>
	<outformat>html</outformat>
</input>'

and got the following response:

{
  "tailf-ncs:output": {
    "id": 1,
    "compliance-status": "violations",
    "info": "Checking 8 devices and no services",
    "location": "https://localhost:443/compliance-reports/report_1_developer_1_2020-10-13T15:48:40:0.html"
  }
}

and found it in the running directory state:

[developer@nso compliance-reports]$ ls
report_1_developer_1_2020-10-13T15:48:40:0.html
[developer@nso compliance-reports]$ pwd
/var/opt/ncs/state/compliance-reports
[developer@nso compliance-reports]$

 

 

 

View solution in original post

0 Helpful
Reply
Latest Contents
Links to individual sessions: NSO Developer Days - APJC, 20...
Created by Nicklas Wagerth on 03-04-2021 02:09 AM
0
0
0
0
Live Event & Video On-Demand    Individual Live Sessions Telstra Network Transformation with AutomationRoss Manariti, Technical Product Owner - Resource Domain & Element Management, Telstra Customer services across thousands of network a... view more
Webinar - Feb 18th - 10am PST - The Integrated NSO and ConfD...
Created by Nabil_Michraf on 02-15-2021 11:39 AM
0
0
0
0
If you are an NSO user, you are probably aware that when you write and read data from any of the NSO northbound interface agents, such as NETCONF, RESTCONF, CLI, MAAPI, etc., those agents are going through the NSO transaction manager before reaching the C... view more
Join us for NSO Developer Days APJC on March 3
Created by Kelli Glass on 02-05-2021 03:49 PM
0
5
0
5
NSO Developer Days is an opportunity for both new and experienced customers to come together and network, share best practices, meet engineering and learn more about what is coming next for NSO. Join service provider and enterprise network automation pro... view more
How to make sure IP is unique in a simple service to config...
Created by Chandra L on 02-03-2021 04:48 AM
2
0
2
0
Hi,   I have a simple service to configure an IP under loopback interface, but how do I delete the IP, if the one I am going to configure is pre-existing on another interface or at least give a warning that this IP is already in use?   Here is m... view more
pyang error: bad value "1.1" (should be version)
Created by BasharAziz on 01-28-2021 05:35 AM
1
0
1
0
Hi, As I understand, when I source ncsrc then it inserts pyang version 1.5 in my path and won't be the use the one I had installed on my system. I'm still facing the same errors every time when executing pyang  :   ❯ pyang test01.... view more