Following Up on Change Tracking Results
The BMC Server Automation PCI FIM process monitors the server objects that you specify in the templates. The change tracking reports identify which of those objects (if any) have changed between two snapshots. It is your organization's responsibility to investigate and follow up appropriately regarding identified changes.
The PCI FIM process identifies changes. It does not remediate, police, or otherwise follow up on the identified changes.
Usually, an organization designates a responsible person or function to perform follow-up activities, such as:
- Regularly review the results of change tracking activities
- Determine whether a reported change was authorized
- Evaluate, determine, and perform or delegate actions to mitigate or escalate unauthorized changes