×
 
 
  •  
$helper.renderConfluenceMacro('{bmc-global-announcement:$space.key}')
TrueSight Smart Reporting for Server Automation 19.2 ... Using Running out-of-the-box reports

Compliance reports

The Compliance reports provide overview and detailed information about the compliance data. Two Regulatory dashboards show data from the compliance contents supplied by BMC. If you use compliance content supplied by BMC, you can use these dashboards for regulatory policies such as CIS, DISA, DISA STIG Revised, HIPPA, PCI, and SOX.

The information in Compliance reports is derived from the Compliance Job runs in TrueSight Server Automation servers. To collect data for the Compliance reports, you need to set up and run Compliance Jobs in TrueSight Server Automation. For more information, see Setting up data collection for Compliance reports.

SCAP reports are based on compliance analysis of the Security Content Automation Protocol (SCAP) benchmark content. To collect data for the SCAP Compliance reports, you need to set up and run SCAP Compliance Jobs in TrueSight Server Automation. For more information, see Creating and modifying SCAP Compliance Jobs in the TrueSight Server Automation documentation.

The following table summarizes the built-in Compliance reports. You can start with the Compliance Dashboard report to view the information and use drill-through columns to view detailed compliance information. For information about running these reports, see Running out-of-the-box reports.

Built-in Compliance reports


Report/Description

Columns

Prompts

View used

Compliance Dashboard

Shows the graphical and tabular monthly trends for compliance activities grouped by OS. This report also provides the monthly compliance percentage in your environment.

  • #Policies: Drill through to Compliance Summary By Policy
  • Servers Attempted: Drill through to Compliance Summary By Server
  • Compliant Servers: Drill through to Compliance Summary By Server
  • Non Compliant Servers: Drill through to Compliance Summary By Server
  • Unknown Servers: Drill through to Compliance Summary By Server
  • %Compliance

Date Range

Compliance








Compliance Summary By Policy

Summarizes the compliance results for servers for a policy over a selected time interval.

When you drill through a server count, you might see a less server count than the parent report because you might not have access to all the servers as per RBAC policy.

  • Template(Policy) Name: Drill through to Compliance Trend By Policy
  • Job Name
  • Job Run Start Time
  • Rules Defined
  • Servers Attempted: Drill through to Compliance Summary By Server
  • Compliant Servers: Drill through to Compliance Summary By Server
  • Non Compliant Servers: Drill through to Compliance Summary By Server
  • Unknown Servers: Drill through to Compliance Summary By Server
  • %Compliance
  • Rules Checked: Drill through to Detailed Compliance Report
  • Rules Compliant: Drill through to Detailed Compliance Report
  • Rules Non Compliant: Drill through to Detailed Compliance Report
  • % Rule Compliance
  • Date Range
  • Show only latest run data
  • Policy Name

Compliance Summary By Server

Summarizes the compliance results for policies for a server over a selected time interval.

  • Server Name: Drill through to Compliance Trend By Server
  • Template(Policy) Name
  • Job Name
  • Job Run Start Time
  • Rules Checked: Drill through to Detailed Compliance Report
  • Rules Compliant: Drill through to Detailed Compliance Report
  • Rules Compliant with Exception
  • Rules Non Compliant: Drill through to Detailed Compliance Report
  • Rules Indeterminate: Drill through to Detailed Compliance Report
  • %Compliance
  • Date Range
  • Show only latest run data
  • OS Name
  • Server Name

Detailed Compliance Report

Provides detailed information for the compliance rules for a policy on the server over a selected time interval.

  • Template (Policy) Name
  • Job Name
  • Server Name
  • Job Run Start Time
  • Rule Group Name
  • Rule Name
  • Rule Definition
  • Rule Status
  • Date Range
  • Show only latest run data
  • Policy Name
  • OS Name
  • Server Name
  • Job Name
  • Rule Name
  • Run Status

Detailed Exceptions Report

Provides detailed information for the compliance rules having exceptions for a policy over a selected time interval.

  • Template (Policy) Name
  • Job Name
  • Server Name
  • Job Run Start Time
  • Rule Group Name
  • Rule Name
  • Rule Definition
  • Exception Name
  • Expiration Date
  • Date Range
  • Show only latest run data
  • Policy Name
  • OS Name
  • Server Name
  • Job Name
  • Rule Name

Compliance Trend By Policy

Provides a graphical and tabular view of the compliance percentage and compliant servers for a policy over a selected time interval.

  • Template(Policy) Name
  • Servers Attempted: Drill through to Compliance Summary By Server
  • Compliant Servers: Drill through to Compliance Summary By Server
  • Non Compliant Servers: Drill through to Compliance Summary By Server
  • %Compliance
  • Date Range
  • Policy Name

Compliance Trend By Server

Provides a graphical and tabular view of the compliance data for a server for all policies over a selected time interval.

  • Server Name
  • Rules Checked: Drill through to Detailed Compliance Report
  • Rules Compliant: Drill through to Detailed Compliance Report
  • Rules Non Compliant: Drill through to Detailed Compliance Report
  • %Compliance
  • Date Range
  • OS Name
  • Server Name

Compliance Policy Status

Provides a graphical view of the following information for a specified policy:

  • Policy Compliance Status: Shows the percentage compliance of a given policy
  • Server Compliance Distribution: Shows the number of servers that are compliant within the following ranges:
      • <= 25%
      • > 25% and < 50%
      • > 50% and < 75%
      • > 75% and < 100%
  • Rule Compliance Distribution: Shows the number of rules that are compliant within the following ranges:
      • <= 25%
      • > 25% and > 50%
      • > 50% and > 75%
      • > 75% and < 100%

This report provides overall results for a policy against distinct servers. For example, 3 job runs for a policy against 3,000 servers (1,000 distinct servers in each job run) would show on this report an overall compliance result of the latest jobs runs on distinct servers irrespective of multiple job runs.

  • Total Rules Checked
  • Total Servers Checked
  • Total Rules Compliant
  • % Compliance
  • Policy Compliance Status:
    • Job Run
    • Server Count
    • Days from last run
  • Server Compliance Distribution
    • Server Compliance
    • Server Count
  • Rule Compliance Distribution
    • Rule Compliance
    • Rule Count

Policy Name

Regulatory Dashboard: Regulatory Compliance Policy Dashboard

Provides a graphical and tabular view of the regulatory compliance policies for latest job run data by policy type (for example, DISA and HIPPA) across all OS types. The dashboard includes the number of compliant and non-compliant servers, unknown servers, and the compliance percentage for a compliance policy type.

This report displays latest job run data of each policy and its associated jobs.

  • Policy Type: Drill through to Regulatory Dashboard: Regulatory Compliance Policy (OS) Dashboard
  • Compliant Servers
  • Non Compliant Servers
  • Unknown Servers
  • % Server Compliance
  • Rules Compliant
  • Rules Compliant with Exception
  • Rules Non Compliant
  • Rules Indeterminate
  • Rules Checked
  • %Rule Compliant

None

Regulatory Dashboard: Regulatory Compliance Policy (OS) Dashboard

Provides a graphical and tabular view of the regulatory compliance policies for latest job run data by policy. The dashboard includes the number of compliant and non-compliant servers, unknown servers, and the compliance percentage for a compliance policy type

  • Policy Type
  • Policy Name
  • Job Run Start Time
  • Compliant Servers: Drill through to Compliance Summary By Server
  • Non Compliant Servers: Drill through to Compliance Summary By Server
  • Unknown Servers
  • % Server Compliance
  • Rules Compliant
  • Rules Compliant with Exception
  • Rules Non Compliant
  • Rules Indeterminate
  • %Rule Compliance

Policy Name

SCAP: SCAP Summary By Benchmark

Summarizes the SCAP compliance results for servers for a benchmark over a selected time interval.

Note: The columns related to collection and data stream in this report output are based on SCAP version 1.2 components. In an SCAP Compliance report for SCAP version 1.0, these items are displayed as 'Not Applicable'.

  • Job Name
  • Job Run Start Time
  • Servers Attempted: Drill through to SCAP Summary By Server
  • Compliant Servers
  • Non Compliant Servers: Drill through to SCAP Summary By Server
  • %Compliance
  • Rules Checked: Drill through to Detailed SCAP Report
  • Rules Passed: Drill through to Detailed SCAP Report
  • Rules Failed: Drill through to Detailed SCAP Report
  • Others: Drill through to Detailed SCAP Report
  • % Rule Compliance
  • Rules Not Selected
  • Total Rules
  • Date Range
  • Show only latest run data
  • Benchmark Name

SCAP

SCAP: SCAP Summary By Server

Summarizes the SCAP compliance results for benchmarks for a server over a selected time interval.

Note: The columns related to collection and data stream in this report output are based on SCAP version 1.2 components. In an SCAP Compliance report for SCAP version 1.0, these items are displayed as 'Not Applicable'.

  • Benchmark Title
  • Job Name
  • Job Run Start Time
  • Profile
  • Rules Checked: Drill through to Detailed SCAP Report
  • Rules Passed: Drill through to Detailed SCAP Report
  • Rules Failed: Drill through to Detailed SCAP Report
  • Others: Drill through to Detailed SCAP Report
  • %Compliance
  • Rules Not Selected
  • Total Rules
  • Date Range
  • Show only latest run data
  • OS Name
  • Server Name

Detailed SCAP Report

Provides detailed information for the SCAP compliance rules for a benchmark on the server over a selected time interval.

Note: The columns related to collection and data stream in this report output are based on SCAP version 1.2 components. In an SCAP Compliance report for SCAP version 1.0, these items are displayed as 'Not Applicable'.

  • Benchmark Title
  • Job Name
  • Server Name
  • Job Run Start Time
  • Profile
  • Run Mode
  • Recursion Level
  • Log Level
  • Rule Group Title
  • Rule Title
  • Rule Description
  • Rule Weight
  • Rule Status
  • Date Range
  • Show only latest run data
  • Benchmark Name
  • OS Name
  • Server Name
  • Job Name
  • Rule Name
  • Run Status


Was this page helpful? Yes No Submitting... Thank you
Last modified by Sulekha Gulati on Jul 24, 2020

Comments

Log in or register to comment.

Command Usage reports
Change Tracking reports
© Copyright 1996-2019 BladeLogic, Inc.
© Copyright 2014-2019 BMC Software, Inc.
Legal notices

Powered by Atlassian Confluence and Scroll Viewport

© Copyright 2005-2024 BMC Software, Inc. Use of this site signifies your acceptance of BMC’s Terms of Use . BMC, the BMC logo, and other BMC marks are assets of BMC Software, Inc. These trademarks are registered and may be registered in the U.S. and in other countries.