create an CLI script to enable/disable the vulnerability feature

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

create an CLI script to enable/disable the vulnerability feature

L0 Member

How to create an script to enable/ disable the vulnerability feature on all the objects.

Thank you

1 accepted solution

Accepted Solutions

L1 Bithead

Are you asking if this can be done, how this can be done, or if someone will do it for you?

View solution in original post

3 REPLIES 3

L1 Bithead

Are you asking if this can be done, how this can be done, or if someone will do it for you?

I just need to know how can be done , and if some one has it , and please send it to me (Nguyen_Chau@allergan.com).

Thank you

L5 Sessionator

Hi Chau,

 

you need to script out following commands in language of your choice:

1. login into device,

2. issue commands:

 

set cli config-output-format set
configure
delete rulebase security rules YOUR_RULE_NAME profile-setting profiles vulnerability
commit
exit
exit

You need to wait for output of the commit to verify you deleted that part of the rule properly and of course you need to replace "YOUR_RULE_NAME" with exact title of your own rule, but other than that you don't need much more.

In order to set the profile back, you need a command

set rulebase security rules YOUR_RULE_NAME profile-setting profiles vulnerability YOUR_VULNERABILITY_PROFILE_NAME

and all other mentioned above (set cli config-output, configure, set..., commit, exit, exit). Succesfull commit should always return a string "Configuration committed successfully" among other stuff.

 

Best regards,


Luciano

 

  • 1 accepted solution
  • 3010 Views
  • 3 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!