Exporting compliance results

You can choose between the following options for exporting the results of a Compliance Job:

Exporting compliance results to JSON and HTML

You can export the results of a Compliance Job to a view-friendly and print-friendly HTML report that is based on JavaScript Object Notation (JSON) data files. For more information about the display of data in the report, see Navigating-the-exported-compliance-report.

To export compliance results to JSON and HTML

  1. To access the results of a Compliance Job, in the Jobs folder, right-click a Compliance Job, and select Show Results.

    Note

    Compliance Job Results cannot be exported from Rule Group Level.

  2. From the results tree displayed in the left pane, expand the job run instance of interest.
  3. Right-click one of the views, servers, components, or rules, and select Export Compliance Results.
    The Export Compliance Results dialog box is displayed.
  4. Browse to and select the directory in which to save the report files.
  5. If multiple target servers are associated with the job, choose whether to generate a single report for all servers or to generate separate reports for the individual servers.
    Use the Generate detailed report for individual servers check box for this setting. The default is a single report.
  6. Click OK.
    Report files are stored in the specified location. For more information about the report, see Navigating-the-exported-compliance-report.

Viewing the HTML output of compliance results

You can view the HTML output of compliance results in a browser, such as Chrome and Firefox. Sometimes, the compliance results do not show the expected data in the browser due to Cross Origin Request Security (CORS) errors. To resolve these errors and view the complete data, you can use any of the following workarounds.

Workaround for Edge:

Workaround
  1. Export (or copy) compliance results to the <InstallDirectory>/NSH/br/deployment/default/tomcat/webapps/dashboard directory.
  2. Open the index.html file using the following URL: https://<hostName>:9843/dashboard/<exportedFolderName>/index.html

Workarounds for Firefox:

  • Workaround 1
    1. Enter the following text in the address bar of the browser: about:config
    2. On the search bar, search for privacy.file_unique_origin, and set its value to false.
    3. Restart the browser.
    4. Open index.html from the exported reports folder.
  • Workaround 2
    1. Enter the following text in the address bar of the browser: about:config
    2. On the search bar, search for security.fileuri.strict_origin_policy, and set its value to false.
    3. Restart the browser.
    4. Open index.html from the exported reports folder.

Workarounds for Chrome

  • Workaround 1
    1. Navigate to the directory that contains the Chrome browser installation files. For example, C:\Program Files (x86)\Google\Chrome\Application>
    2. At the command prompt, run the following command:
      chrome.exe --disable-web-security --disable-gpu --user-data-dir=chromeTemp
    3. Open index.html from the exported reports folder.
  • Workaround 2
    1. Navigate to the directory that contains the Chrome browser installation files. For example, C:\Program Files (x86)\Google\Chrome\Application>
    2. At the command prompt, run the following command:
      chrome.exe --allow-file-access-from-file
    3. Open index.html from the exported reports folder.

Exporting compliance results to ARF or ASR

You can export the results of a Compliance Job to Asset Reporting Format (ARF) version 0.41 or Assessment Summary Results (ASR) version 0.41.

Before you begin

Before exporting the results of a Compliance Job to ARF or ASR formats, you must enable the following TrueSight Server Automation Application Server Administration console (the blasadmin utility) settings (the settings are disabled by default).

  • To view the default value of the blasadmin utility property, execute the following command:show Appserver EnableARFAndASRExecution
  • To enable the blasadmin utility property, execute the following command:set Appserver EnableARFAndASRExecution true

To export compliance results to ARF or ASR

  1. To access the results of a Compliance Job, in the Jobs folder, right-click a Compliance Job, and select Show Results
  2. From the results tree displayed in the left pane, expand the job run instance of interest.
  3. Right-click one of the views, servers, components, or rules, and select Export ARF/ASR Results.
    The Export Results dialog box is displayed.
  4. For Object Name, provide a file name and location where you want to store the exported results.
  5. For Object Type, select one of the following file formats:
    • ARF 0.41 — Saves results in ARF version 0.41 format.
      If multiple target servers are associated with the job, then, by default, a separate file is exported for each server, and the file name that you enter here (in step 4 above) is appended with the name of each specific server (that is fileName_serverName). If you prefer to export the results from all servers in a single file, click Options and then clear the Split Files check box.
    • ASR 0.41 — Saves results in ASR version 0.41 format.
      The Options button is always enabled. By default, the ruleID parameter in the ASR report is mapped to Reference Number. You can map the ruleID parameter to AUTO_GENERATE, NAME, DESCRIPTION, or NOTES. If you select AUTO_GENERATE, the ruleID value assumes the following format: <<Component Template Name>>/<<Group Name>>/<<Rule Name>>.
  6. From File encoding, select the type of character encoding for the exported data, such as UTF8 or UTF16.
  7. On the Export Results dialog box, click Save.

Note

  • Exported results files support IPv6 server addresses. In the ARF/ASR results file, IPv6 addresses are marked with the IPv6 tag, while IPv4 addresses are marked with the IPv4 tag.
  • Whenever there is a change in the IP address of the target/server enrolled in TrueSight Server Automation, you need to run an Update Server Properties Job and rerun the Compliance job, so that the new IP address is reflected in the ASR report. If you do not run the Update Server Properties Job and export the ARF result, you will receive the message "The network configuration data is missing for ... targets."

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*