Available only in the Web console.
Being able to predict vulnerability and compliance issues can help you reduce the number of policy templates that you must run and review to assess your assets.
Many policy templates use the same security checks to assess an endpoint’s vulnerability to security breaches or compliance with a regulation, standard, or benchmark. If an endpoint fails security check instances in one policy template run, that endpoint will fail the same instances in another policy template. When you click Vulnerability & Compliance Prediction in an assessment report, Core Services identifies the security checks and check instances that the assessed endpoints failed, then reviews all policy templates that include the same security checks and instances. After completing the review, the Web console lists all regulations, standards, and benchmarks that the assessed endpoints might fail.
For example, you ran the NetIQ SOX/CobiT 4.1 for Windows Server policy template against your BANK_LONDON_1 server. The endpoint failed the Third-party SMB server password connect setting security check. Core Services can predict that the endpoint will also fail the NetIQ PCI DSS 2.0 for Windows Server policy template, which includes that security check.
The prediction includes the following information:
The regulations, standards, and benchmarks that might be affected.
Number of policy templates that might be affected.
Percent and number of security checks in all potential policy template runs that might be affected.
Details about the affected security checks so you can determine whether those security checks are worth acting upon. If a security check is not important to the endpoint, you can create exceptions for the assessment.
For more information about applying the prediction algorithm, see the Help in the Web console.