Secure Configuration Manager can help you automate much of the policy compliance effort through scheduled policy templates and automatic out-of-compliance notifications. To help your remediation efforts when endpoints fall out of compliance, Secure Configuration Manager can send emails to users, distribution lists, and change management systems.
For more information about sending notifications when you run a policy template, see the Help in the Web or Windows console.
NOTE:A console user can override the settings for compliance notifications in the Core Services Configuration Utility by selecting or deselecting the Enable e-mail compliance alerts option in the Run Policy Template and Run Security Check wizards.
If your organization includes systems that contain highly sensitive information or that must be continuously operational, you might want to be notified when report results indicate that an endpoint poses a security or operational risk. You can configure Secure Configuration Manager to send email notifications to individuals and distribution lists when endpoints become out of compliance with policy templates. By default, Secure Configuration Manager sends out-of-compliance notifications to the email address in the endpoint properties Contact Email field. For more information about adding an email address to an endpoint, see Managing Your Endpoints.
On the Core Services computer, start the Core Services Configuration Utility in the NetIQ Secure Configuration Manager program folder.
On the Out of Compliance Alerts tab, set the Enable Email Alerts field to True.
Specify the appropriate value for each field.
Click OK to save the changes and close the Configuration Utility.
For best performance, restart both the NetIQ Core Services service and the console.
When you run a policy template or security check, select the option to send email notifications:
In the Web console, select Enable e-mail compliance alerts.
In the Windows console, click Enable Distribution, then specify the email options.
Every organization has complex workflows and change management processes that require adherence. Sending out-of-compliance alerts to a change management ticketing system uses your company-defined workflow to quickly address assets that fall out of compliance with policy templates.
On the Core Services computer, start the Core Services Configuration Utility in the NetIQ Secure Configuration Manager program folder.
On the Out of Compliance Alerts tab, set the Enable Email Alerts field to True.
In the Email Change Management System field, specify the email address of the third-party change management system you want to notify when endpoints are out of compliance.
Click OK to save the changes and close the Configuration Utility.
For best performance, restart both the NetIQ Core Services service and the console.
When you run a policy template or security check, select the option to send a notification to the change management system:
In the Web console, select Forward assessment report to destination server.
In the Windows console, click Enable Distribution, then specify the file distribution options.