Three network device management tools strut their stuff

TrueControl also offers an auto-discovery feature that removes the need for administrators to define makes and models when adding devices. TrueControl contacts the device via all supported protocols and determines the make and model automatically. This process takes time, however; instead of waiting, administrators may prefer to define the device manually.

Free IT resource Virtualization Insights from Top Experts - Learn how virtualization gets real! Sponsored by Dell Free IT resource TechNet: More ways to know it, share it, and keep it running. Sponsored by Microsoft

TrueControl also includes a syslog server that is installed with the package. When devices are added manually or are imported, you can have TrueControl change the configuration of each device to point syslog output to the TrueControl server. In addition to SNMP traps and regular polling, TrueControl can actively monitor each device for changes and can notify administrators when a change occurs. The downside is that the syslog server doesn’t necessarily scale and may cause problems if relied on to handle logging for thousands of devices.

In terms of change management, TrueControl has the edge. By acting as the syslog server, as well as an SSH/Telnet proxy server, TrueControl can mandate that every change made to any device on the network be commented on by the engineer making the change, regardless of device OS or vendor. When a change is made via a script or SSH/Telnet proxy, a prompt is presented to the engineer requesting information. If a configuration change is made outside of TrueControl’s purview, it will be noted in the logs, and TrueControl will send an e-mail to the requisite engineer requesting that a change comment be submitted. For administrators tasked with change management duties on large networks, this is a definite benefit.

Another nice feature of TrueControl is the policy assurance tool. Administrators can define policies for each class of devices and can use TrueControl to monitor adherence. For instance, internal best practices may dictate that certain services are disabled on all Cisco routers and that a loop-back interface exists. TrueControl can then detect and report on policy compliance across the enterprise.

TrueControl takes first place in reporting as well. The default summary report contains just about every data point you need -- from device counts by OS and vendor; to change statistics by device, user, and group; to a complete device inventory -- all in native Excel format with accompanying graphs. Reports can also be made more granular, highlighting specific device changes over periods of time or noting all devices with different running or startup configurations. These reports can be viewed through the Web interface, or they can be scheduled to be sent via e-mail. 

Like TND and DeviceAuthority, TrueControl had no problem detecting and adding any device in the lab aside from the Dell switches. And as with the other solutions, the device support layer is modular, with Rendition offering free device updates. As for extensibility, TrueControl offers Perl and Java APIs for custom integration possibilities, with API guides available from links on the navigation bar.

Among the three solutions I tested, only TrueControl and DeviceAuthority truly offer centralized control over network device configuration. TND simply doesn’t compare to the others in terms of manageability or features. TrueControl’s deep reporting is a major benefit, and DeviceAuthority's network development environment could be extremely valuable. TrueControl’s pricing puts it at the top of the heap -- nearly double the cost of the others -- but it’s arguably worth it. Its policy assurance and extended reporting capabilities make it a more complete solution.

Correction:
In this review, we originally misreported which version of DeviceAuthority Suite we reviewed. The error has been corrected.