×
 
 
  •  
$helper.renderConfluenceMacro('{bmc-global-announcement:$space.key}')
BMC Server Automation 8.2 ... Using Creating and modifying BMC Server Automation jobs Jobs for auditing and compliance Creating and modifying Compliance Jobs Compliance results

Manually remediating compliance results

You can manually remediate the configuration of components that have failed a Compliance Job.

A compliance rule definition can specify a BLPackage that should be deployed if a component fails the rule and remediation is required. This procedure uses Compliance Job results to deploy BLPackages that correct compliance rule failures for target components. Rather than perform this procedure, you may want to define a Compliance Job so it automatically remediates failed components (see Creating Compliance Jobs).

For more information about remediation jobs and remediation packages, see About remediation packages and remediation jobs. You can use a similar procedure to create a remediation package that is stored in the Depot without also creating a Deploy Job to deploy the package. For the details of that procedure, see Creating a remediation package.

When you manually remediate Compliance Job failures and BMC Server Automation automatically creates Deploy Jobs for a remediation job, the system applies default settings to those Deploy Jobs. BMC Server Automation provides a procedure for specifying your own customized settings for Deploy Jobs that are automatically created for remediation purposes. This procedure can be very helpful if a remediation job launches many Deploy Jobs. For more information about the procedure, see Setting deploy options for remediation jobs.

To manually remediate compliance results

  1. In the Jobs folder, select a Compliance Job, right-click, and select Show Results.
    A new tab opens in the content editor. It shows the Compliance Job results.
  2. In the hierarchical tree on the left of the tab, expand a particular run of the Compliance Job, and do one of the following:
    • Using the navigation pane on the left, select any node under that job run from the Server View or Rules View node down.
    • Use the navigation pane to select a node under the Compliance Job run, and then select multiple sub-nodes on the content editor. For example, if you select the Server View node on the left, you can select multiple servers on the right.
  3. Right-click and select Remediate to open the Remediate Job Result window.

    Note

    The Remediate option is only available if the item you have selected includes one or more compliance rules needing remediation and those compliance rules include remediation options. For more information about defining compliance rules, see Compliance tab for a component template.

  4. For Remediation name, enter a name for the remediation job. If the job generates a Batch Job, the name you enter here is also assigned to the Batch Job.
  5. For Save package in, click Browse and navigate to the depot folder where you want to store the BLPackage generated by this procedure.
  6. For Save remediation/deploy job in, click Browse and navigate to the job group where you want to store any Deploy Jobs (and potentially a Batch Job) that this procedure generates.
  7. Select Keep each local property name unique in remediation package if you want the remediation package to include duplicate property names for individual compliance rules that have failed. Although their names are the same, each property is indexed so that all references to a particular property are retained. In addition, the default value for each property is also retained.
    If you clear this option, property names are left untouched. However, the default value assigned to the property becomes the value of the property for the first failed compliance rule that is merged into the remediation package.
  8. Select Use servers as remediation target if you want any Deploy Jobs to target the servers (or other devices) associated with the components that are the targets of a Compliance Job. If you clear this option, the Deploy Jobs use the components that are targets of the Compliance Job as the targets for the remediation job.
  9. Click OK.

BMC Server Automation examines the failed compliance rules and creates a remediation job by doing one of the following:

  • If you are remediating multiple components and BMC Server Automation has created more than one Deploy Job to deploy multiple remediation packages, a Batch Job appears. The Batch Job is defined to run the Deploy Jobs needed to remediate the target components.
  • If you are remediating a single component or BMC Server Automation has created one remediation package that applies to multiple components, a Deploy Job appears.
Was this page helpful? Yes No Submitting... Thank you
Last modified by Sulekha Gulati on Jun 13, 2012
remediation blpackages compliance_jobs compliance_job_results results task

Comments

Log in or register to comment.

Undoing autoremediation
Creating a remediation package
© Copyright 2017 BMC Software, Inc. © Copyright 2017 BladeLogic, Inc.
Legal notices

Powered by Atlassian Confluence and Scroll Viewport

© Copyright 2005-2024 BMC Software, Inc. Use of this site signifies your acceptance of BMC’s Terms of Use . BMC, the BMC logo, and other BMC marks are assets of BMC Software, Inc. These trademarks are registered and may be registered in the U.S. and in other countries.