Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1621
Views
0
Helpful
9
Replies

compliance check issue

Go to solution
cn1by080byj
Level 1
Level 1

‎02-14-2008 11:25 PM

Dear all,

I try to do compliance check via two command line as below:

1.spanning-tree vlan <VLAN ID> priority <priority value>

2.ip tacacs source-interface vlan <switch_management_vlan_id>

but it is failed.

Is anyone can help me how to do it?

Thanks

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Joe Clarke
Cisco Employee
Cisco Employee
In response to cn1by080byj

‎02-19-2008 10:52 PM

"Vlan\d+" is a regular expression which means match the literal string "Vlan" followed by one or more digits.

View solution in original post

0 Helpful
9 Replies 9

Go to solution
Joe Clarke
Cisco Employee
Cisco Employee

‎02-15-2008 09:42 AM

I assume you're using RME? If so, what version? What does your compliance template look like? What error do you get trying to test for compliance?

0 Helpful

Go to solution
cn1by080byj
Level 1
Level 1
In response to Joe Clarke

‎02-17-2008 06:11 PM

yes,I'm using RME.Version is 4.0.5.

i express unclear.In fact the job display successed.

my question is the command already setup in switch but when compliance check can not found it(need setup it)Please see attachment

two command:

spanning-tree vlan priority

ip tacacs source-interface vlan

Preview file
12 KB
0 Helpful

Go to solution
Joe Clarke
Cisco Employee
Cisco Employee
In response to cn1by080byj

‎02-17-2008 06:45 PM

It looks like you're trying to check for these commands in global mode. Please export for compliance template to an XML file, then post that XML file.

0 Helpful

Go to solution
cn1by080byj
Level 1
Level 1
In response to Joe Clarke

‎02-19-2008 07:28 PM

hi,

Yes you are right.it is global mode.

XML please check attachment

Preview file
1 KB
0 Helpful

Go to solution
Joe Clarke
Cisco Employee
Cisco Employee
In response to cn1by080byj

‎02-19-2008 08:55 PM

This template checks out. Though typically we would not see spaces in the variable names. For example:

+ spanning-tree vlan [STP_VLAN] priority [PRIORITY]

+ ip tacacs source-interface vlan [switch_management_vlan_id]

Let's see the config from one of these non-compliant switches.

0 Helpful

Go to solution
cn1by080byj
Level 1
Level 1
In response to Joe Clarke

‎02-19-2008 09:50 PM

Thanks for your help!

Now command

+ spanning-tree vlan [STP_VLAN] priority [PRIORITY] is ok

But + ip tacacs source-interface vlan [switch_management_vlan_id]

still is unavailable.the switch config as attach:

Preview file
406 KB
0 Helpful

Go to solution
Joe Clarke
Cisco Employee
Cisco Employee
In response to cn1by080byj

‎02-19-2008 10:02 PM

The problem is Vlan301 is one word, and you are treating it as two. Try:

+ ip tacacs source-interface [tacacs_source_interface]

Or:

+ ip tacacs source-interface [#Vlan\d+#]

0 Helpful

Go to solution
cn1by080byj
Level 1
Level 1
In response to Joe Clarke

‎02-19-2008 10:51 PM

Thanks for your strong support!

That's solved.

+ ip tacacs source-interface [#Vlan\d+#]

Would you please tell me what's mean "d+" in the command line.

Thanks

0 Helpful

Go to solution
Joe Clarke
Cisco Employee
Cisco Employee
In response to cn1by080byj

‎02-19-2008 10:52 PM

"Vlan\d+" is a regular expression which means match the literal string "Vlan" followed by one or more digits.

0 Helpful
Customers Also Viewed These Support Documents