Security Compliance determines component version inconsistencies between the Apex One server and Security Agents. Inconsistencies typically occur when agents cannot connect to the server to update components. If the agent obtains updates from another source (such as the Trend Micro ActiveUpdate server), it is possible for the agent component version to be newer than the version on the server.

Security Compliance checks the following components:

  • Smart Scan Agent Pattern

  • Virus Pattern

  • IntelliTrap Pattern

  • IntelliTrap Exception Pattern

  • Virus Scan Engine 32/64-bit

  • Spyware/Grayware Pattern

  • Spyware Active-monitoring Pattern

  • Spyware/Grayware Scan Engine 32/64-bit

  • Damage Cleanup Template

  • Damage Cleanup Engine 32/64-bit

  • Common Firewall Pattern

  • Common Firewall Driver 32/64-bit

  • Behavior Monitoring Core Driver 32/64-bit

  • Behavior Monitoring Core Service 32/64-bit

  • Behavior Monitoring Configuration Pattern

  • Digital Signature Pattern

  • Policy Enforcement Pattern

  • Behavior Monitoring Detection Pattern 32/64-bit

  • Global C&C IP List

  • Relevance Rule Pattern

  • Early Boot Cleanup Driver 32/64-bit

  • Memory Scan Trigger Pattern (32/64-bit)

  • Memory Inspection Pattern

  • Browser Exploit Prevention Pattern

  • Script Analyzer Unified Pattern

  • Program Inspection Monitoring Pattern

  • Damage Recovery Pattern

  • Early Launch Anti-Malware Pattern 32/64-bit

  • Contextual Intelligence Engine 32/64-bit

  • Contextual Intelligence Pattern

  • Contextual Intelligence Query Handler 32/64-bit

  • Advanced Threat Scan Engine 32/64-bit

  • Advanced Threat Correlation Pattern

  • Program Version

A non-compliant agent is counted at least twice in the Compliance Report.

  • In the Endpoints with Inconsistent Component Versions category

  • In the category for which the agent is non-compliant. For example, if the agent Smart Scan Agent Pattern version is not consistent with the version on the server, the agent is counted in the Smart Scan Agent Pattern category. If more than one component version is inconsistent, the agent is counted in each category for which it is non-compliant.

To resolve component version inconsistencies, update outdated components on the agents or server.