Differences

This shows you the differences between two versions of the page.

--- guides:user:compliance:examples:telnet [2022/04/29 08:39] – created pgels
+++ guides:user:compliance:examples:telnet [2024/07/03 12:31] (current) – external edit 127.0.0.1
@@ Line 1: / Line 1: @@
+======Verify telnet is disabled======
+Disabling Telnet and enabling SSH is one of the best practices suggested by the official Cisco Hardening Guide for IOS devices to secure the management plane. Below example helps in validating telnet configuration disabled using NetYCE Compliance module
+campus01-b02-access01 and campus01-b02-access02 are the two reference devices which we are using for this example.  One has telnet configuration enabled and other does not.
+===Example config===
+==campus01-b02-access01#==
+{{:guides:user:compliance:compliance:howto:cpl3_1.png}}
+==campus01-b02-access02#==
+{{:guides:user:compliance:compliance:howto:cpl3_2.png}}
+===How its done===
+Below are the steps to create new policy.
+Operate -> Compliance -> Policies -> New->
+{{:guides:user:compliance:compliance:howto:cpl3_3.png}}
+Click on the Node Group to select the relevant group of devices to add. Node group named "building2_access" holds the nodes of both the nodes:
+{{:guides:user:compliance:compliance:howto:cpl2_4.png}}
+Rule -> New
+{{:guides:user:compliance:compliance:howto:cpl3_5.png}}
+{{:guides:user:compliance:compliance:howto:cpl3_6.png}}
+===Report/test results:===
+Below is how to create reports to see the results of the compliance policies.
+Operate -> Compliance -> Reports -> New -> Report Name “test” -> Report type “Policies” -> Policy Name “Sample 2 : Login banner” -> Show Report
+{{:guides:user:compliance:compliance:howto:cpl1_7.png}}
+This was a simple example to understand how to implement compliance policy to verify if telnet access is disabled or enabled on the network devices.