NETiDENT iNCM
Network Configuration Management
Take control of network device configurations.
| Device | Vendor | Change | Status | Time |
|---|---|---|---|---|
| core-rtr-01 | Cisco IOS-XR | interface Gi0/0/1 desc | Backed up | 2m |
| agg-sw-04 | Arista EOS | ACL inbound updated | Drift | 9m |
| edge-fw-02 | Fortinet | policy 118 added | Backed up | 14m |
| dc-sw-11 | Juniper Junos | VLAN 240 trunk | Restored | 31m |
| branch-rtr-22 | Cisco IOS | OSPF area 0 cost | Backed up | 47m |
| wan-rtr-07 | Huawei | BGP neighbor down | Pending | 1h |
interface GigabitEthernet0/0/1- description UPLINK-CORE+ description UPLINK-CORE-AGG04ip address 10.10.1.2 255.255.255.0- shutdown+ no shutdown
Product mockup — representative of the INCM interface.
Overview
NETiDENT iNCM is the network configuration management module of the NETiDENT platform. It helps teams manage, back up, compare, audit, and track configuration changes across multi-vendor network devices.
It is designed to reduce configuration risk, improve compliance, and help network teams quickly identify unauthorized or unexpected changes — before they cause an outage.
Automated backups
Scheduled and on-demand configuration backups with full version history and restore support.
Change detection & diff
Detect changes, compare versions, and see startup vs running differences with who-changed-what audit trails.
Compliance & golden config
Enforce golden-configuration baselines and run compliance checks to satisfy audit requirements.
Multi-vendor support
Manage configurations across routers, switches, and firewalls from many vendors over SSH, SNMP, and NETCONF.
Key capabilities
Backup & versioning
- Network configuration backup
- Scheduled configuration backup
- On-demand configuration backup
- Configuration version history
- Configuration restore support
Change control & audit
- Configuration change detection
- Configuration comparison
- Startup and running configuration comparison
- Change notification
- Audit trail for configuration activity
- Role-based access control
Compliance & standards
- Configuration compliance checking
- Golden configuration baseline
- Configuration audit
Operations
- Device command execution
- Multi-vendor device support
Multi-vendor device support
iNCM backs up and audits configurations across major network vendors over SSH, Telnet, SNMP, and NETCONF — and more via custom device templates.
Security & Compliance
NETiDENT iNCM is engineered to the platform's shared security standard — a FIPS 140 validated cryptographic module, ISO 27001-aligned controls, and TLS enforced at nginx.
FIPS-validated cryptographic module with a fail-closed security posture gate.
- Password hashing: PBKDF2
- Secrets at rest: AES-256-GCM
- Posture gate: Fail-closed
- Validated module: GoFIPS 140 · fips140=on
Information-security controls: audit logging, RBAC, encryption at rest, session handling.
- Audit log: Append-only, role-protected
- RBAC: Granular permissions
- Encryption at rest: AES-256-GCM (Vault Transit)
- Token lifecycle: Expiry + refresh
Encrypted transport terminated at nginx, with HSTS, secure headers, and enforced HTTPS.
- TLS termination: nginx · TLS 1.2 / 1.3
- HSTS + secure headers: Enabled
- HTTPS enforcement: Enforced
Reflects implemented security controls and cryptographic posture from internal audit. Validated-module status applies where a FIPS-validated runtime is deployed.
Typical use cases
- Detect unauthorized configuration changes
- Track who changed what and when
- Compare configuration before and after maintenance
- Maintain golden configuration standards
- Back up device configurations automatically
- Support audit and compliance requirements
- Reduce network outage caused by misconfiguration
Ideal for
See NETiDENT iNCM in your network
Request a tailored walkthrough and see how NETiDENT iNCM fits your operations.