Secure Configuration Manager helps you to resolve the security risks reported by an assessment in the following ways:
In the assessment report, you identified the endpoints that failed a security check. The assessment also tells you the value for the configuration setting value that would result in a successful result. You can now ask the endpoint’s administrator to resolve the failures. For ease of communication, you send the relevant information from the assessment report to the administrator.
You know that the settings that caused the failed security checks are acceptable for that particular server or endpoint. So you create an exception for the endpoint or the security checks to prevent the failed conditions from causing a violation.