The Security Audit Wizard allows you to examine the existing Layer 2 security features, such as port security, dynamic ARP inspection (DAI), DHCP snooping, IP Source Guard, and traffic storm control, configured on different devices. It also allows you to apply the configurations that are missing on the device.
Licensing Requirements for the Security Audit Wizard
The following table shows the licensing requirements for this feature:
The Security Audit Wizard requires a LAN Enterprise license. For a complete explanation of the Cisco DCNM licensing scheme and how to obtain and apply licenses, see the Cisco DCNM Installation and Licensing Guide, Release 5.x.
The Security Audit Wizard is not available in Cisco NX-OS. For a complete explanation of the Cisco NX-OS licensing scheme for your platform, see the Cisco NX-OS Licensing Guide.
Prerequisites for the Security Audit Wizard
The Security Audit Wizard has the following prerequisites:
You should be familiar with the following features before you use the Security Audit Wizard to change the security configuration:
Address Resolution Protocol (ARP)
IP Source Guard
Traffic storm control
You must enable the following features on the device that you want to perform the audit on:
Platform Support for the Security Audit Wizard
The following platform supports this feature. For platform-specific information, including guidelines and limitations, system defaults, and configuration limits, see the corresponding documentation.