Skip to Content

Perform System Security Configure without Overwrite

Specifies that the database should be not emptied prior to importing the security template.

Warning

Note

This workflow is available only for use in Microsoft Windows environments.

 Workflow inputs – Perform System Security Analyze without Overwrite

Call Workflow Input

Description

Required

Default Value

connection details

XML document conforming to the Connection Details common object that contains the information required to execute a command via command line.

Yes

n/a

database

Specifies the database used to perform the analysis.

Yes

n/a

security template

Specifies a security template to import into the database prior to performing the analysis.

No

There is no default value.

security areas

Specifies the security areas to be applied to the system.

 

Valid values:

  • SECURITYPOLICY (Includes account policies, audit policies, event log settings, and security options), GROUP_MGMT (Includes Restricted Group settings),
  • USER_RIGHTS (Includes User Rights, Assignment),
  • REGKEYS (Includes Registry, Permissions),
  • FILESTORE (Includes File System, permissions)
  • SERVICES (Includes System Service settings)

 

Warning

Note

To configure multiple areas, separate each area by a space.

No

If no value supplied all areas are applied.

log file

Specifies a file in which to log the status of the configuration.

No

If no value supplied data logs to %windir%/security/log/sscesrv.log

 

 Workflow outputs – Perform System Security Analyze without Overwrite

Call Workflow Output

Description

output

XML document consisting of one or more <line> elements that contain the command response. Each <line> element contains an index attribute indicating the order in which the information was returned by the command.

success

Did the operation succeed?

 

Valid values: true, false

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*

TrueSight Orchestration Content 20.18.01