Create a Rule

In this section we will explain how to create a new rule with screenshots. The examples below will generate a violation when the SNMP community setting is “public” in the Cisco IOS device configuration.

  1. Click the [Compliance] main tab.

  2. Click the [Rule Sets] subtab.

  3. Click the [Create] button.

  1. In the [Violation Message] field, enter the message that will be displayed when a violation is detected

  2. Click the button.

In the example below, the message is "SNMP community set to “public”:

  1. In the [Match Expression] column, enter the text that is a violation.

  2. In the [Action] column select [Violate on match].

If you want to test the rule you created:

  1. Click [Select a configuration] in the upper right to test and select a configuration from your inventory.

The configuration selection window displays a list of devices that apply to the adapter you selected when creating the rule. This column only displays devices that match the IOS adapter you originally selected.

Violations will be searched for against this text rule. If violations are found, they will be displayed in red.