| Hostname | IP Address | Status | Assigned To | Last Scan | Actions |
|---|---|---|---|---|---|
| MONTPOINTGTWYRTR | 10.10.10.1 | 2026-01-14 | |||
Finding DetailsEvaluate-STIG 1.2507.5 (Scan-CiscoXERouterNDM_Checks) found this to be OPEN on 10/23/2025 ResultHash: 887A831BD26D733D8E7BF0EFA917C4970FFE1B26 ~~~~~ Cisco router is not configured to conduct backups of the configuration when changes occur Comments |
|||||
Check Text
Review the Cisco router configuration to verify that it is compliant with this requirement. The example configuration below will send the configuration to a SCP server when a configuration change occurs. event manager applet BACKUP_CONFIG event syslog pattern "%SYS-5-CONFIG_I" action 1 info type routername action 2 cli command "enable" action 3 cli command "copy run scp" pattern "remote host" action 4 cli command "x.x.x.x" pattern "filename" action 5 cli command "$_info_routername-config" action 6 syslog priority informational msg "Configuration backup was executed" If the Cisco router is not configured to conduct backups of the configuration when changes occur, this is a finding.
Fix Text
Configure the Cisco router to send the configuration to a SCP server when a configuration change occurs as shown in the example below. R4(config)#event manager applet BACKUP_CONFIG R4(config-applet)#event syslog pattern "%SYS-5-CONFIG_I" R4(config-applet)#action 1 cli command "enable" R4(config-applet)#action 2 info type routername R4(config-applet)#action 3 cli command "copy run scp" pattern "remote host" R4(config-applet)#action 4 cli command "x.x.x.x" pattern "filename" R4(config-applet)#action 5 cli command "$_info_routername-config" R4(config-applet)#action 6 syslog priority informational msg "Configuration backup was executed" R4(config-applet)#end