compliance check issue

Answered Question
Feb 14th, 2008
User Badges:

Dear all,

I try to do compliance check via two command line as below:

1.spanning-tree vlan <VLAN ID> priority <priority value>

2.ip tacacs source-interface vlan <switch_management_vlan_id>

but it is failed.

Is anyone can help me how to do it?


Thanks

Correct Answer by Joe Clarke about 9 years 2 months ago

"Vlan\d+" is a regular expression which means match the literal string "Vlan" followed by one or more digits.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Joe Clarke Fri, 02/15/2008 - 09:42
User Badges:
  • Cisco Employee,
  • Hall of Fame,

    Founding Member

I assume you're using RME? If so, what version? What does your compliance template look like? What error do you get trying to test for compliance?

cn1by080byj Sun, 02/17/2008 - 18:11
User Badges:

yes,I'm using RME.Version is 4.0.5.


i express unclear.In fact the job display successed.


my question is the command already setup in switch but when compliance check can not found it(need setup it)Please see attachment


two command:

spanning-tree vlan priority

ip tacacs source-interface vlan





Attachment: 
Joe Clarke Sun, 02/17/2008 - 18:45
User Badges:
  • Cisco Employee,
  • Hall of Fame,

    Founding Member

It looks like you're trying to check for these commands in global mode. Please export for compliance template to an XML file, then post that XML file.

Joe Clarke Tue, 02/19/2008 - 20:55
User Badges:
  • Cisco Employee,
  • Hall of Fame,

    Founding Member

This template checks out. Though typically we would not see spaces in the variable names. For example:


+ spanning-tree vlan [STP_VLAN] priority [PRIORITY]

+ ip tacacs source-interface vlan [switch_management_vlan_id]


Let's see the config from one of these non-compliant switches.

cn1by080byj Tue, 02/19/2008 - 21:50
User Badges:

Thanks for your help!

Now command

+ spanning-tree vlan [STP_VLAN] priority [PRIORITY] is ok


But + ip tacacs source-interface vlan [switch_management_vlan_id]

still is unavailable.the switch config as attach:






Attachment: 
Joe Clarke Tue, 02/19/2008 - 22:02
User Badges:
  • Cisco Employee,
  • Hall of Fame,

    Founding Member

The problem is Vlan301 is one word, and you are treating it as two. Try:


+ ip tacacs source-interface [tacacs_source_interface]


Or:


+ ip tacacs source-interface [#Vlan\d+#]

cn1by080byj Tue, 02/19/2008 - 22:51
User Badges:

Thanks for your strong support!


That's solved.


+ ip tacacs source-interface [#Vlan\d+#]


Would you please tell me what's mean "d+" in the command line.


Thanks



Correct Answer
Joe Clarke Tue, 02/19/2008 - 22:52
User Badges:
  • Cisco Employee,
  • Hall of Fame,

    Founding Member

"Vlan\d+" is a regular expression which means match the literal string "Vlan" followed by one or more digits.

Actions

This Discussion