Generating an On-demand Compliance Report

  1. Go to Assessment > Security Compliance > Manual Report.
  2. Go to the Agent Tree Scope section.
  3. Select the root domain or a domain and click Assess.
  4. View Compliance Report for agent services.

    For details about agent services, see Services.

    1. Click the Services tab.
    2. Under Endpoints with Non-compliant Services, check the number of agents with non-compliant services.
    3. Click a number link to display all affected agents in the agent tree.
    4. Select agents from the query result.
    5. Click Restart OfficeScan Agent to restart the service.
      Note:

      After performing another assessment and the agent still appears as non-compliant, manually restart the service on the agent endpoint.

    6. To save the list of agents to a file, click Export.
  5. View Compliance Report for agent components.

    For details about agent components, see Components.

    1. Click the Components tab.
    2. Under Endpoints with Inconsistent Component Versions, check the number of agents with component versions that are inconsistent with the versions on the server.
    3. Click a number link to display all affected agents in the agent tree.
      Note:

      If at least one agent has a more up-to-date component than the OfficeScan server, manually update the OfficeScan server.

    4. Select agents from the query result.
    5. Click Update Now to force agents to download components.
      Note:
      • To ensure that agents can upgrade the agent program:

        1. Go to Agents > Agent Management.

        2. Click the Settings > Privileges and Other Settings > Other Settings tab.

        3. Go to the Update Settings section.

        4. In the OfficeScan agents only update the following components drop-down, select All components (including hotfixes and the agent program).

        5. Click Apply to All Agents.

      • Restart the endpoint instead of clicking Update Now to update the Common Firewall Driver.

    6. To save the list of agents to a file, click Export.
  6. View Compliance Report for scans.

    For details about scans, see Scan Compliance.

    1. Click the Scan Compliance tab.
    2. Under Endpoints with Outdated Scanning, configure the following:
      • Number of days the agent has not performed Scan Now or Scheduled Scan

      • Number of hours Scan Now or Scheduled Scan is running

        Note:

        If the number of days or hours is exceeded, the agent is treated as non-compliant.

    3. Click Assess next to the Agent Tree Scope.
    4. Under Endpoints with Outdated Scanning, check the number of agents that satisfy the scan criteria.
    5. Click a number link to display all affected agents in the agent tree.
    6. Select agents from the query result.
    7. Click Scan Now to initiate Scan Now on agents.
      Note:

      To avoid repeating the scan, the Scan Now option will be disabled if Scan Now lasted more than the specified number of hours.

    8. To save the list of agents to a file, click Export.
  7. View Compliance Report for settings.

    For details about settings, see Settings.

    1. Click the Settings tab.
    2. Under Computers with Inconsistent Configuration Settings, check the number of agents with settings inconsistent with the agent tree domain settings.
    3. Click a number link to display all affected agents in the agent tree.
    4. Select agents from the query result.
    5. Click Apply Domain Settings.
    6. To save the list of agents to a file, click Export.