Mapping targets and scheduling audits

Once policy groups are created, the next step involves mapping the policy groups to the desired target group and scheduling audit scans. This operation can be performed from the Map and Audit Targets view under the Compliance tab. Target group is essentially a custom group of systems to which the policy groups can be mapped. Target group systems' configurations will be periodically audited for compliance against rules in the mapped policies based on the schedule you define. Schedule an audit by clicking on Create Audit. This will take you to the audit creation workflow.

Follow the below steps to an create audit,

  • Select the Target Group for audit. You can use the custom groups you've already created as targets. If you're just starting out and haven't created any custom groups, you can create one by clicking on Create Target Group. This will take you to the custom group creation workflow. For detailed steps on how to create custom groups, refer to this document.
  • Select the policy groups to be mapped to the Target. Target group systems will be audited for compliance against all the polices in the mapped policy groups. You can map more than one policy group to the Target.
  • The next step is choosing the audit scan frequency and defining the scan schedule. Based on the selected scan frequency, the following schedule options will be available:
Scan frequency Scan schedule options
Once (The scan will happen only once) Specify the date and time at which the audit scan should start on the targets.
Specified days (The scan will happen everyday/on alternate days/on weekdays alone based on your schedule)
  • Specify the date and time at which the audit scan should start on the targets.
  • Choose whether to perform the scan everyday/on alternate days/on weekdays alone at the specified time.
Weekly (The scan will happen on particular days of every week based on your schedule)
  • Specify the time at which the audit scan should start on the targets.
  • Choose the preferred days of every week on which the scan should be performed. The scan will be repeated every week on those days.
Monthly
  • Specify the time at which the audit scan should start on the targets.
  • You will have the option to choose preferred week(s) of the month or preferred day of the month.
  • If you choose preferred week(s) of the month option, then select the weeks on which the scan should be repeated and select which day of the week the scan should be performed. If you choose the preferred day of the month option, select which day of the month the scan should be performed.
  • Choose the months in which the scan should be repeated.
  • Enable notifications if you wish to be notified regarding the changes in audit status.
  • Specify the frequency at which you wish to be notified.
  • Type in the email address(es) to which the notifications should be sent.
  • If you click on Create Audit, the audit scan will be created and the targets will be scanned as per the defined schedule. If you click on Create Audit and scan now, the audit scan will be created and the targets will be scanned immediately and as per the schedule.

Note:While running audits on multiple systems, Vulnerability Manager Plus will automatically check the OS first before running audits. Audit scans only run on systems whose OS type matches with that of the policies. Therefore, ensure that the system in the Target Group are of the same OS platform as that of policies you are about to map.