Hi I'd like to submit a request for change how policy compliance is performed. Now it is done once a day or after every configuration change. I have several policies with many rules and this way of checking policy compliance is resource consuming and I could see big performance degradation. Maybe...

Implementing Changes Once you have your network policies defined, see the prior posts Part 1 and Part 2 , then implemented in a configuration policy check, you need a way to correct any non-compliant configurations. An obvious choice for remediation is to simply login to the offending device and type...

In the prior post, I explained why configuration policies are needed. Now it is time to discuss how to build policies. I like to start with the written policies, because that tells me what was intended. An example is: "All network devices will be configured to send syslog messages to the syslog...

I am in need of a report which shows which Config File Collection method/s are in use by NetMRI on each device in a user-selectable group (i.e. none, telnet, SSH, http). I searched key words in the forums hoping that someone else had already done this, but didn't find what I was looking for. Can...

When dealing with both internal and external compliance requirements, IT staffs typically must shoulder the burden of proving the network infrastructure meets and maintains the best practices/gold standards (internal) or regulatory mandates (external). Traditionally, this process uses a great deal of...

I've written before in Subsystem Configuration Policy Check about incorporating operational data with configurations for performing configuration compliance validation. Another example, with a different twist to it, occurred last week while creating an NTP policy check on a customer's network...

My previous post talked about the basics of verifying a configuration prior to deployment as a way to minimize the number of incorrect configurations that are fielded. The second topic, which is closer to the original NANOG posting comments, is with respect to auditing existing configurations to make...

We are fortunate enough to have one of our customers, Charles Chambers from University of Houston and Matt Shell from our partner company Coleman Technologies join us in a PCI webinar coming up next Wednesday on 8/27/08 at 2:00 PM ET. The webinar will cover some of the bases of PCI plus share some of...

We implemented a new reporting engine and added a number of reports in v2.4, including: Change Audit, Managed Devices, Asset Inventory, PCI and ISO 27002 compliance, and Configuration Policy Summaries. We plan to further exploit that reporting engine to build even more reports into our next release....

I was recenlty talking to one of Netcordia's university customers in the state of Texas. They have over 40 merchants and store fronts on campus allowing students and others to pay by credit card. And they've started to get audited at least once per year for PCI DSS compliance, as they have obligation...