USE CASE
Composer Benefits
Increased network security
All network devices are automatically kept in compliance with security policies and best practices, reducing risks and costs while saving time.
Full audit visibility
The full scope of device config changes are captured along with operator interventions to ensure audit visibility and policy compliance.
Reduced troubleshooting time
With real-time awareness of changes in device configurations, operators no longer need to invest time searching for the source of config changes.
Situation: A Network Operator Makes a Change
-
A network operator makes a change to the configuration of a network device but may not have thought to reflect that change in the configuration management database (CMDB).
-
A monitoring Syslog service like Solarwinds, ELK Stack or Splunk would capture and log the change but not perform any CMDB query to ensure consistency.
-
Over a period of time a "Configuration Drift" will develop whereby the actual configuration of various network devices and the CMDB configuration data will differ.
-
Ultimately, there are potentially serious security and compliance risks introduced by an accumulating "Configuration Drift" in the absence of a more automated approach to ensuring the actual and intended configurations are accurately reflected in the CMDB.
Manual Change Management
Orchestral.ai's Solution
Orchestral.ai provides a completely automated solution to this problem. Orchestral's event-driven architecture can automatically execute a "Configuration Drift" workflow in response to the "event" of a change in the configuration of a network device. Orchestral's event-driven architecture ensures that any configuration change is captured and synchronized with the Configuration Management Database (CMDB) upon operator approval and in accordance with applicable policies.
Automated Change Management
Orchestral.ai's Event-Driven Change Management
-
Orchestral monitors the Syslog service, such as SolarWinds, ELK Stack, Splunk or similar for the specific "event" of a configuration change.
-
Once a config change has been detected, Orchestral will initiate a "Config Drift" workflow that begins with a query check of the Configuration Management Database (CMDB).
-
Orchestral retrieves from the CMDB the stored configuration of the target (i.e changed) device and brings this data into the "Config Drift" workflow.
-
Leveraging the hundreds of available device integrations, Orchestral will then extract the running config of the target/changed device.
-
Next, Composer performs a diff to compare the stored device configuration against the changed device configuration with the result captured for audit purposes.
-
Orchestral will then prompt the operations team via Chatops, email or similar alerting tool to make them aware of the change and provide them an opportunity to decide which config to retain.
-
Should the operations team choose to retain the CMDB config, then Orchestral will create an IT Service Management (ITSM) ticket with high priority to replace the running config with the stored CMDB config.
-
If the operations team chooses to retain the changed config, then Orchestral will update the CMDB with the changed config to ensure that the actual running config is correctly captured in the CMDB.
-
Finally, the audit trail of this operation is saved by Orchestral by opening an ITSM ticket and attaching the related data.
Getting Started
Orchestral's solutions are available as free 30-day Proof of Value evaluations. To get started, just click the "FREE TRIAL" button at the top of this page and complete the Trial Request Form. If you'd like to see a demo first, just click the "Book a Demo" button below to book a date/time that works best for you. Otherwise, you can get started by emailing us at info@orchestral.ai.