Q. I have benchmarked the performance of an Assess Only across my fleet of
devices. What is the relative performance I can expect when I Assess and
Remediate?
A. This depends on how much remediation is required per device, but a good guideline to follow is
twice the amount of time of an Assess Only. This is a rough estimate and is based upon every
assessed setting being out of compliance with your policy.
Q. Why won’t one of my policy settings remediate?
A. Within the policy editor, an individual setting can be configured not to remediate and is most
likely the cause. Open the suspect policy and select the setting that is not remediating. Make sure
Advanced Policy Settings is selected in the view. Now, change the Remediation setting
from Disable to Enable. If this is not the issue, then you are experiencing the proper behavior
of a setting that, by design, cannot be remediated.
Q. Must I create a new task every time I want to Assess or Assess and Remediate?
A. No. There are several ways to create a new task. You can select a completed task from the
Tasks window, right click and select Start, if it is a task you want to repeat. Or, you can select
a completed task, right click and edit the parameters you desire. Or, schedule the task to reoccur
at a daily, weekly or monthly interval.
Q. What is the primary value of an Assess Only?
A. Performing an Assess Only allows you to validate the comprehensiveness of a newly created
policy before remediating any out of compliance devices. Assess Only reports security
compliance recommendations on each device assessed, which allows you to adjust the policy, if
required. Once you are comfortable with your new policy, switching to Assess and
Remediate keeps your assessed fleet compliant with that policy.
Q. After an assessment, I sometimes see a Device Error in the device
recommendations. What does this error indicate?
A. Recommendations are based on the gathering of a device’s setting information via an assortment
of network protocols and specific ports. If IPSC is unable to gather this information using a
specific protocol in the appropriate amount of time, a Device Error is posted for that particular
setting.
REPORTS
Q. Why does the Executive Summary Report show an Assessment Risk By Device
pie chart with 100% High Risk?
A. This indicates that you have at least one high risk setting out of security policy compliance for
every device you assessed.
(184 páginas)
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comentários a estes Manuais