Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

compliance check issue

Dear all,

I try to do compliance check via two command line as below:

1.spanning-tree vlan <VLAN ID> priority <priority value>

2.ip tacacs source-interface vlan <switch_management_vlan_id>

but it is failed.

Is anyone can help me how to do it?

Thanks

1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

Re: compliance check issue

"Vlan\d+" is a regular expression which means match the literal string "Vlan" followed by one or more digits.

9 REPLIES
Cisco Employee

Re: compliance check issue

I assume you're using RME? If so, what version? What does your compliance template look like? What error do you get trying to test for compliance?

New Member

Re: compliance check issue

yes,I'm using RME.Version is 4.0.5.

i express unclear.In fact the job display successed.

my question is the command already setup in switch but when compliance check can not found it(need setup it)Please see attachment

two command:

spanning-tree vlan priority

ip tacacs source-interface vlan

Cisco Employee

Re: compliance check issue

It looks like you're trying to check for these commands in global mode. Please export for compliance template to an XML file, then post that XML file.

New Member

Re: compliance check issue

hi,

Yes you are right.it is global mode.

XML please check attachment

Cisco Employee

Re: compliance check issue

This template checks out. Though typically we would not see spaces in the variable names. For example:

+ spanning-tree vlan [STP_VLAN] priority [PRIORITY]

+ ip tacacs source-interface vlan [switch_management_vlan_id]

Let's see the config from one of these non-compliant switches.

New Member

Re: compliance check issue

Thanks for your help!

Now command

+ spanning-tree vlan [STP_VLAN] priority [PRIORITY] is ok

But + ip tacacs source-interface vlan [switch_management_vlan_id]

still is unavailable.the switch config as attach:

Cisco Employee

Re: compliance check issue

The problem is Vlan301 is one word, and you are treating it as two. Try:

+ ip tacacs source-interface [tacacs_source_interface]

Or:

+ ip tacacs source-interface [#Vlan\d+#]

New Member

Re: compliance check issue

Thanks for your strong support!

That's solved.

+ ip tacacs source-interface [#Vlan\d+#]

Would you please tell me what's mean "d+" in the command line.

Thanks

Cisco Employee

Re: compliance check issue

"Vlan\d+" is a regular expression which means match the literal string "Vlan" followed by one or more digits.

227
Views
0
Helpful
9
Replies