Submit a ticketCall us

AnnouncementsFace your biggest database issues head-on

Our new eCourse helps you navigate SQL Server performance blocks by teaching you how to recognize and deal with the three DBA Disruptors: Performance Hog, Blame Shifter, and Query Blocker. Register today to learn how to defend your environment and fend off menacing disruptions.

Register for your free eCourse.

Home > Success Center > Network Configuration Manager (NCM) > NCM Documentation > NCM 7.8 Administrator Guide > Ensure compliance to policy rules > Create and manage policy reports

Create and manage policy reports

Created by Caroline Juszczak, last modified by Melanie Boyd on Jun 03, 2018

Views: 1,096 Votes: 3 Revisions: 6

Policy reports provide a way to group policies, either by the devices that they will be executed against or by the type of rules they enforce. When a policy report runs, NCM checks device configurations to determine if they comply with the policies.

You can include the same policy in multiple policy reports.

To learn how rules, policies, and policy reports work together, see Policy compliance.

Create a policy report

  1. Click My Dashboards > Configs > Compliance.
  2. Click Manage Policy Reports.
  3. Click Add New Report.
  4. Name the report, and enter a description.
  5. Select settings for Save in Folder and Display Settings.
  6. Under All Policies, select the policies to include and click Add. If the policy you need is not listed, you can create a policy.
  7. Click Submit.

Edit a policy report

  1. Click My Dashboards > Configs > Compliance.
  2. Click Manage Policy Reports.
  3. Select a report, and click Edit.
  4. Edit values, and click Submit.

Delete a policy report

  1. Click My Dashboards > Configs > Compliance.
  2. Click Manage Policy Reports.
  3. Select a report, and click Delete.
  4. Click Yes.

Configure DISA STIG compliance reports

NCM provides default rules, policies, and policy reports you can use to determine if your devices comply with DISA standards. The Defense Information Systems Agency Security Technical Implementation Guides (DISA STIG) reports are available in your NCM installation. To run the reports that specify the policies for your devices, make sure that you have first defined the node "Device_Type" in custom properties for your device type.

For example, for Cisco devices, specify the Device_Type and OS in custom properties with the following options:

Device Types:

PRTR, PL3S, IRTR, IL3S, L2SW, FW

OS types supported:

IOS, NX, XE, ASA

Likewise, for F5 devices, specify the Device_Type in custom properties.

Create a DISA STIG dashboard

You can set up a dashboard specifically to monitor compliance. To create a DISA STIG compliance dashboard, see the complete details in How to Create a DISA STIG Dashboard on THWACK.

Learn more

After you define policy reports, you can use the reports to find and remediate policy violations. You can also share policy reports between Orion servers or with other users.

 

Last modified

Tags

Classifications

Public