Submit a ticketCall us

WebinarUpcoming Webinar: How Help Desk and Remote Support Pays for Itself

Learn how help desk software can simplify ticketing management, allow you to track hardware and software assets, and accelerate the speed of IT support and service delivery. Gain insights on how remote support tools allow your IT team to maximize their efficiency and ticket resolution by expediting desktop troubleshooting, ultimately helping keep end-users happy and productive.

Register here.

Home > Success Center > Network Configuration Manager (NCM) > NCM Documentation > NCM 7.8 Administrator Guide > Ensure compliance to policy rules > Find and remediate policy violations

Find and remediate policy violations

Created by Caroline Juszczak, last modified by Melanie Boyd on Jun 03, 2018

Views: 919 Votes: 0 Revisions: 5

Updated: May 31, 2018

You can use policy reports to find device configurations that do not comply to policies. To view information about policy violations, you must:

  1. Make sure the cached policy compliance information is up-to-date.

  2. View a policy report to display the cached information.

After you have viewed a report and remediated one or more violations, you can verify that the violations were successfully remediated.

Update cached policy compliance information

NCM runs policy reports against the selected nodes to locate any policy violations, and then caches the results so that the data can be accessed quickly. You can update cached policy compliance information in any of the following ways:

Automatically update cached policy compliance information

When the policy cache is enabled, NCM automatically runs policy reports at the specified time to check for policy violations. By default, the policy cache is updated daily at 11:55 PM.

  1. Click Settings > All Settings.
  2. Under Product Specific Settings, click NCM Settings.
  3. Under Advanced, click Advanced Settings.
  4. Under Cache Settings, select Enable Config and Policy Caches.
  5. Specify what time to generate the policy cache.
  6. Click Submit.

Manually update cached policy compliance information

After you modify policy rules or download updated configuration files, you can manually update cached policy compliance information to reflect the changes.

  1. Click My Dashboards > Configs > Compliance.
  2. To manually update the cached information:

    • To update all reports, click Update All.
    • To update one or more reports, select the reports and click Update Selected.

Schedule a policy report job

You can configure a policy report job to send emails each time the job runs or only if it finds policy violations. When the job runs, it updates the cached policy compliance information so that the report provides a snapshot of current policy compliance.

  1. Click My Dashboards > Configs > Jobs.
  2. Click Create New Job.
  3. Name the job, and select Generate a Policy Report from Job Type.
  4. Select the Schedule Type. If you are creating an Advanced schedule, use the five fields to create a CRON expression.
  5. Add a comment if this job relates to a business rule, and click Next.
  6. On the Choose Nodes tab, click Next.
  7. Select an email notification option, and click Next. If you click Email Results, the default email notification and SMTP server settings are populated. These settings can be overridden in each job.
  8. Select the policy report to generate as part of the job.
  9. If you want to suppress notifications when no violations are found, select Send Notification Only When There Are Policy Violations.
  10. Click Next.
  11. Review the settings for the job, and click Finish.

View a policy report

When you view a report, it displays the latest cached policy compliance information. Use this information to investigate and remediate policy violations.

If compliance information for a report is not current, you can manually update the information.

  1. Click My Dashboards > Configs > Config Summary.

    The Policy Violations resource lists the policy violations found the last time each report ran.

  2. Click a report name to open the Report Details page.

    The upper left corner shows the Last Updated date and time.

    Icons indicate which rules were violated on each node:

    • A green check mark icon_check.png indicates that the rule was not violated.
    • Any other icon indicates that the rule was violated, and reflects the severity of violating that rule.

    policyreportdetails.png

  3. Click a violation icon.

    The Violation Details dialog shows the rule that was violated and indicates if a remediation script is available.

    If the violation occurred because the string was found, you can click the arrow to display the line number in the config file.

    policy_report_view_line_number.png

  4. (Optional) Click View Config to open the Config Details view in a different tab.
  5. (Optional) If a remediation script is available, click a Management option to execute the script on this node or on all nodes in violation.

Verify that a policy violation was remediated

When you discover a policy violation, complete the following steps to resolve the issue and verify that the remediation was successful.

  1. Update the configuration file to resolve the policy violation, either by editing the file or by running a remediation script.
  2. Download the updated configuration file.
  3. Update the cached policy compliance information for the report that detected the policy violation.
  4. View the report to verify that the policy violation is not found.

 

Last modified

Tags

Classifications

Public