Compliance Policies
By setting a compliance policy, you can automatically ensure device configuration settings. For this automatic detection, you need to create a device compliance rule. A device compliance rule is constructed using the following four matching conditions.
- If matched, it is excluded.
- If it does not match, it is not applicable.
- If matched, it is a violation.
- If it does not match, it is a violation.
Each condition has a single search string, and checks if the given configuration matches that string. A collection of compliance rules is called a Rule Set. Rule Sets can customized.
In addition, policies can be used to manage compliance on a larger scale. A policy is created by combining multiple Rule Sets. It also contains information such as the list of devices to which it applies, the severity of violations (errors, warnings, or notifications), and the violation history.