Core objectives

• Strengthen security: Ensures devices remain inherently secure against evolving threats.

• Reduce attack surface: Deprecates and removes obsolete capabilities to eliminate exploitation risks.

• Protect data: Deploys advanced security features to safeguard sensitive information.

For more information on resilient infrastructure, see <sd-wan playbook>

Insecure configurations tab overview

Configurations that no longer meet current security requirements and increase the risk of exploitation are considered insecure. The Insecure Configurations tab in Cisco Catalyst SD-WAN enables administrators to identify and remediate these vulnerabilities. It offers centralized visibility and actionable insights into insecure settings across devices, configuration groups, and templates managed by Cisco SD-WAN Manager.

Benefits of visibility into insecure configurations

• Centralized visibility

  Offers a consolidated dashboard to track insecure configurations present in the network.

• Actionable guidance

  Provides remediation steps for each detected insecure configuration, helping maintain compliance and security.

• Operational assurance

  Enables administrators to identify, prioritize, and resolve insecure settings before critical operations such as upgrades.