This section provides step-by-step instructions that you can follow to configure Secure Configuration Manager when you want to work with the evaluation tools.
You can configure Secure Configuration Manager to use a particular port and protocol to communicate with client computers, such as those used for the Secure Configuration Manager Dashboard and the Security Checkup Results Viewer. By specifying a port number, you can meet your unique environment needs. For example, your security policy may dictate that Web applications use specific ports or you may need to accommodate a network firewall.
Web services must be enabled for the Asset Compliance View and the Secure Configuration Manager Dashboard to function. Similarly, you must enable the Web Site feature for the Security Checkup Results Viewer to display results and for Out of Compliance email alerts to link to the Security Checkup Results Viewer.
To configure the Web services:
On the Core Services computer, start the Core Services Configuration Utility in the NetIQ Secure Configuration Manager program folder.
Click the Web Services tab.
(Optional) To enable users to access the Asset Compliance View or the Secure Configuration Manager Dashboard, change Enable Web Services to true.
(Optional) To enable users to access the Security Checkup Results Viewer, change Enable Web Site to true.
Click OK to save the changes and close the Configuration Utility.
Secure Configuration Manager has a pool of available reporting content that consists of all recently run reports. Using the Core Services Configuration Utility, you can specify how many days of report data are available for use with the Asset Compliance View, the Secure Configuration Manager Dashboard, and the Security Checkup Results Viewer.
You can also configure Secure Configuration Manager to send alerts when endpoints fall below compliance levels based on risk scores. By changing the acceptable risk score range, you can decide the level of vulnerability that results in an email alert according to your company policy. For more information about risk scores, see Section 6.3, Understanding Risk Scoring. For more information about email alerts, see Section 5.8, Automating Compliance Notification.
To configure data settings:
On the Core Services computer, start the Core Services Configuration Utility in the NetIQ Secure Configuration Manager program folder.
Click the Out of Compliance Alerts tab.
In the Out of Compliance When Endpoint Scores field, select the risk score range that determines whether endpoints are out of compliance.
In the Collect Data for N Days field, specify the number of days for which you want to view report results.
For example, if you specify 30 in the Collect Data for N Days field, Secure Configuration Manager displays results for policy templates run during the past 30 days. If a policy template is not run during this time period, Secure Configuration Manager reports the policy compliance as unknown.
Click OK to save the changes and close the Core Services Configuration Utility.