Documentation forNetwork Configuration Manager

Create and manage policy reports

Graphic showing how rules roll up into policies, and policies roll up into policy reports.

Policy reports provide a way to group policies, either by the devices that they will be executed against or by the type of rules they enforce. When a policy report runs, NCM checks device configurations to determine if they comply with the policies.

You can include the same policy in multiple policy reports.

To learn how rules, policies, and policy reports work together, see Policy compliance.

Create a policy report

  1. Click My Dashboards > Network Configuration > Compliance.
  2. Click Manage Policy Reports.
  3. Click Add New Report.
  4. Name the report, and enter a description.
  5. Select settings for Save in Folder and Display Settings.
  6. Under All Policies, select the policies to include and click Add. If the policy you need is not listed, you can Create a policy.
  7. Click Submit.

Edit a policy report

  1. Click My Dashboards > Network Configuration > Compliance.
  2. Click Manage Policy Reports.
  3. Select a report, and click Edit.
  4. Edit values, and click Submit.

Delete a policy report

  1. Click My Dashboards > Network Configuration > Compliance.
  2. Click Manage Policy Reports.
  3. Select a report, and click Delete.
  4. Click Yes.

Configure DISA STIG compliance reports

NCM provides default rules, policies, and policy reports you can use to determine if your devices comply with DISA standards. The Defense Information Systems Agency Security Technical Implementation Guides (DISA STIG) reports are available in your NCM installation. To run the reports that specify the policies for your devices, make sure that you have first defined the node "Device_Type" in custom properties for your device type.

For example, for Cisco devices, specify the Device_Type and OS in custom properties with the following options:

Device Types:

PRTR, PL3S, IRTR, IL3S, L2SW, FW

OS types supported:

IOS, NX, XE, ASA

Likewise, for F5 devices, specify the Device_Type in custom properties.

Create a DISA STIG dashboard

You can set up a dashboard specifically to monitor compliance. To create a DISA STIG compliance dashboard, see the complete details in How to Create a DISA STIG Dashboard on THWACK.

Learn more

After you define policy reports, you can use the reports to find and remediate policy violations. You can also share policy reports between Orion servers or with other SolarWinds users.