I've been ask to create a TCL script to blocked the command 'clear crypto session' if the user didn't add the 'remote xx.xx.xx.xx'. To forbid someone to clear all the session by mistake.
And to be quite frank I do not really know where to begin. I try to find TCL scripts similar to that, but I didnt not find any. And I've never user TCL before...
There is the main documentation page at http://www.cisco.com/en/US/docs/ios/netmgmt/configuration/guide/nm_eem_overview_ps10592_TSD_Products_Configuration_Guide_Chapter.html . Then there is the CiscoBeyond site which offers a nice repository of Cisco and user-contributed scripts at http://www.cisco.com/go/ciscobeyond . There is also a partner, Progrizon, which offers a free policy building tool to help get you started with applet and Tcl scripting.
Here you go. Copy this file to a directory on the device's local flash (e.g. flash:/policies), then do:
Router(config)#event manager directory user policy flash:/policies
Router(config)#event manager policy cl_no_clear_crypto.tcl
Then test away.