Video Screencast Help

Host Integrity Report

Created: 08 Jun 2011 • Updated: 11 Sep 2012 | 5 comments
This issue has been solved. See solution.

Hi,

How i can find the Host integrity passes or failed clients details..because iam getting only the percentage of passed or failed clients?? how to get the client details also..kindly help..

Comments 5 CommentsJump to latest comment

Mithun Sanghavi's picture

Hello,

You can collect the Compliance Logs.

(SEPM > MONITORS > LOGS > Change the Logs type to "Compliance" > Advance Settings)

The compliance logs contain information about the Enforcer server, Enforcer clients, and Enforcer traffic, and about host compliance.

The following compliance logs are available if you have Symantec Network Access Control installed:

  • Enforcer Server

    This log tracks communication between Enforcers and their management server. Information that is logged includes Enforcer name, when it connects to the management server, the event type, site, and server name.

  • Enforcer Client

    Provides the information on all Enforcer client connections, including peer-to-peer authentication information. Available information includes time, each Enforcer's name, type, site, remote host, and remote MAC address, and whether or not the client was passed, rejected, or authenticated.

  • Enforcer Traffic (Gateway Enforcer only)

    Provides some information about the traffic that moves through an Enforcer appliance. Available information includes the time, the Enforcer name, the Enforcer type, and site. The information also includes the local port that was used, the direction, action, and a count. You can filter on the connection attempts that were allowed or blocked.

  • Host Compliance

    This log tracks the details of Host Integrity checks of clients. Available information includes the time, event type, domain/group, computer, user, operating system, description, and location.

 

Reference:

 

About log types
 
 

Mithun Sanghavi
Senior Consultant
MIM | MCSA | MCTS | STS | SSE | SSE+ | ITIL v3

Don't forget to mark your thread as 'SOLVED' with the answer that best helped you.

Srikanth_Subra's picture

Hi,

Do you have any sample report for this in excel or other format..so that i will check

Thanks & Regards,

 Srikanth.S

"Defeat the Defeat before the Defeat Defeats you"
(Swami Vivekananda)

Mithun Sanghavi's picture

Hello,

Nopes. I would not be able to provide a report.

 

You can collect the Compliance Logs from your SEPM server.

1) Login to SEPM

2) Go to MONITORS

3) Go to LOGS

4) Change the Logs type to "Compliance"

5) Advance Settings

6) Click on View Log

7) Click on Export

Once, the logs have been Exported, you could use this article to get them to open in Excel

https://www-secure.symantec.com/connect/articles/how-export-virus-definition-and-client-information-excel-format

 

Hope that helps!!!

Mithun Sanghavi
Senior Consultant
MIM | MCSA | MCTS | STS | SSE | SSE+ | ITIL v3

Don't forget to mark your thread as 'SOLVED' with the answer that best helped you.

SOLUTION
Srikanth_Subra's picture

Hi,

I did like you told in excel and found some users host integrity failed..but i could not find any reason y that host integrity failed..

Sent report to my management waiting for reply..

Thanks & Regards,

 Srikanth.S

"Defeat the Defeat before the Defeat Defeats you"
(Swami Vivekananda)

Srikanth_Subra's picture

I got the reason for fail from the computer status report..it is showing whai exact thing failed..

after that only we need to do the R&D work..

Thanks & Regards,

 Srikanth.S

"Defeat the Defeat before the Defeat Defeats you"
(Swami Vivekananda)