docTripwire Enterprise Sample Compliance Reports REPORT CATALOG
download 
Report Transcription
Tripwire Enterprise Sample Compliance Reports REPORT CATALOG
REPORT CATALOG Tripwire Enterprise Sample Compliance Reports Tripwire Enterprise Sample Compliance Reports Windows SOX Compliance Date: Group by: Display raw score (without waivers): Display criteria at end: Nodes: Node name: Node Properties: Policies: Nodes sort: Policies sort: Scoring range sort: Details table sort: 1/14/10 2:58 PM Policy, Node No No All Not applied Not applied MS Windows Server 2003 DM Control Objectives - SOX Name, ascending Name, ascending Score, descending Name, ascending Tripwire Enterprise Compliance Reports provide instant, real-time views of an IT group’s compliance status with dozens of industry policies and security standards. MS Windows Server 2003 DM Control Objectives - SOX Passing Each node is displayed with its current compliance score the percentage of passing tests as compared to all possible tests. “Waived Tests” record the presence of temporary waivers, used to indicate when a server is being re-provisioned, or when it’s out-of-scope Waived Tests due to business process 0 rules. Node Score WIN-COMPLIANCE1.PDXSE.TR IPWIRE.COM 97.77 WIN-COMPLIANCE2.PDXSE.TR IPWIRE.COM 96.66 0 WIN-COMPLIANCE3.PDXSE.TR IPWIRE.COM 96.66 2 WIN-COMPLIANCE4.PDXSE.TR IPWIRE.COM 97.62 0 Tripwire Enterprise Sample Compliance Reports PCI Compliance History –Servers Compliance History Reports detail changes in compliance stature over time, indicating trends and areas that need further attention. Details Interval Passed Failed Total Week of 5/4/09 1231 760 1991 Week of 5/11/09 17 10 27 Week of 5/18/09 1313 279 1592 Week of 5/25/09 42 171 213 Totals 2603 1220 3823 Date: Display waiver states: Display criteria at end: Tests: Nodes: Node name: Node Properties: Policies: Test Severity range: Frequency: Weight: 7/17/09 4:23 PM Not applied Yes All All Not applied Not applied All All Weekly, Prior to 5/29/09 12:00 AM, 4 intervals All In addition to a graphic presentation, weekly or monthly compliance history reports can provide text summaries of pass/ fail scores over specified periods of time. Tripwire Enterprise Sample Compliance Reports NERC CIP-007-1.R6 for RHEL (Security Status Monitoring) Tripwire Enterprise compliance reports are drillable and customizable, allowing security and operations staff to glean additional details from higher-level summaries. R6 Security Status Monitoring R6.1 Security Event Auditing Node Passed Tests Failed Tests Percent Compliant rhel51fixit.pdxse.tripwire.com 2 10 17% R6.2 Security Event Monitoring & Alerts Node Clicking any node in a this report generates a detailed rhel51fixit.pdxse.tripwire.com view of the specific test failures for the subject node. Linking allows Tripwire Enterprise Percent users toCompliant create report Passed Failed Tests “storyTests boards” that can be used to illustrate the way secu0 rity controls need to1be enhanced. 0% R6.3 System Event Audit & Log Maintenance Node Passed Tests Failed Tests Percent Compliant rhel51fixit.pdxse.tripwire.com 2 14 13%
