When detailed results are grouped by controls, then each control in the report is listed with the control's ID number (CID), control statement, and the assigned category/sub-category. The controls are listed in the same order and in the same sections as the policy that you're reporting on.
When a control summary is included in the report, the following information appears for each control.
Total. The number of hosts in the policy that the control was evaluated on (sum of passed and failed).
Passed. The number of hosts in the policy that passed the control.
Failed. The number of hosts in the policy that failed the control.
Approved Exceptions. The number of hosts in the policy with an approved exception for this control.
Pending Exceptions. The number of hosts in the policy with a pending exception for this control.
The following additional information may be included for each control, depending on your policy report template settings.
External Mappings. A list of external frameworks, standards and regulations (such as CobIT, ISO, CIS, SOX, Basel II, etc.) that the control maps to. The list of frameworks displayed may include all available frameworks or a custom list of frameworks. Managers can customize the list of frameworks for the subscription (on the Setup > Frameworks page) and any user can customize the list of frameworks in the policy report template (on the Frameworks tab).
Control Comments. User-provided comments entered in the control details.
Each technology that the control applies to is listed below the control. A technology rationale statement may be included for each technology in the report. This is a statement of how the control should be implemented for the technology.
When a technology summary is included in the report, the following information appears for each technology.
Total. The number of hosts in the policy that the control was evaluated on for this technology.
Passed. The number of hosts in the policy that passed the control for this technology.
Failed. The number of hosts in the policy that failed the control for this technology.
Approved Exceptions. The number of hosts in the policy with an approved exception for this control for this technology.
Pending Exceptions. The number of hosts in the policy with a pending exception for this control for this technology.
A list of hosts relevant to the technology appears below the technology. These details for each host are provided.
Instance: Each host instance is listed with information detected by the scanning engine. This includes the host's IP address, DNS name and NetBIOS name in this format: IP address (DNS hostname, NetBIOS hostname). For example: 10.10.10.1 (mywin-01, MYWINXP-01). If the host instance to a technology version, like an Oracle version, the instance information appears in this format: (Oracle technology version:SID:port). For example: (Oracle10:ora102030p:1521).
Status: Each host is listed with the Passed or Failed status. The status is determined when the expected value for a control is compared to the actual value for the control. The expected value is defined in the compliance policy. The actual value is returned during the last policy compliance scan on the host.
Passed. A status of Passed indicates that the expected value and the actual value match.
Failed. A status of Failed indicates that the expected value and the actual value do not match.
PassedE. A status of PassedE indicates that the host is exempt from the control. This means that an exception was requested and accepted for the control on the host.
The following additional information may be included for each host, depending on your policy report template settings. Click the arrow next to any host to expand details. (To expand details for all hosts in the report, select Expand All from the View menu in your report.)
OS. The operating system detected on the host.
OS CPE. The OS CPE name assigned to the operating system detected on the host. (The OS CPE name appears only when the OS CPE feature is enabled for the subscription, and an authenticated scan was run on this host after enabling this feature.)
Last Scan Date. The date and time the host was last scanned for compliance. If the host was found alive during the most recent compliance scan, the scan's date becomes the last scan date, regardless of whether authentication to the host was successful.
Evidence. The expected value and the actual value for the control on the host. The expected value is the value defined in the compliance policy. The actual value is the value returned during the last compliance scan on the host. These values are compared during the evaluation process for the control on the host, resulting in a Passed or Failed status.
See Control Values for information on the types of control values that may appear in your report, including integer values, regular expressions, and Windows permissions.
If an error occurs for a user-defined custom control, then a description of the error appears in the Actual field. For example, you might see "Error Code 2: Item not found" if the registry key that the control needs to check does not exist.
Extended Evidence. Extended evidence includes additional findings/information collected during the evaluation of the control on the host. For example, this may include results returned from queries made by the scanning engine when checking the control value. Extended evidence appears below the expected and actual values in the report.
Exception. When a host is exempt from a control, then exception details may also be included in the report. Exception details include the exception assignee, status, exception creation date and end date.
History. A history of user actions and comments for the exception on the host.