Viewing Compliance by Control
The Controls sub-tab helps you identify of all the control instances that are used in scanning your IT assets, how many show the PASS or the FAIL result. You also get to see the categorization of control instances showing FAIL posture into their levels of criticality. This helps you prioritize the remediation measures where you want to treat your high-risk assets first followed by lesser critical assets.
You can use several ways to filter out your posture records. For example, you can view the records in the context of control instances or of assets. You can also group records by controls, control categories, criticality levels, technology categories and subcategories.
You can also identify whether the scanned host was a scanner or an agent using the Source column. This provides clarity when multiple scan sources are associated with the same host. The 
indicates agent and the 
indicated scanner.
Viewing Posture Details by Controls
When you view posture details for a control, the details include an Evidence section with the Expected and Actual values for each control. The Expected value is the value defined in the compliance policy. The Actual value is the value returned during the last compliance scan on the host. These values are compared during the evaluation process for the control on the host, resulting in a Passed or Failed status.
View Posture Details by Controls
Select a control you are interested in and select View Posture Details from the Quick Action menu.
In the Posture Summary section, you can view comprehensive posture summary with many up-to-date details about the policy and the associated controls.
In the General Information section, expand the Evidence drop-down to see the expected and actual values for each control.
When a control has multiple sets of criteria, you can view them grouped with the operators AND and OR. Expand any control description to see the Expected and Actual values.
Download Posture Control Details in CSV Format
To download the Posture Control details in CSV format, in the Posture tab, select Controls > download icon (
).
The Posture Control report is downloaded. The report consists of the columns posture ID, status, evaluation date, control statement and ID, host ID, DNS Hostname, technology name, instance, IP address, NetBIOS name, policy ID, policy title, QDS, Mitre Tactic Name, Mitre Technique Name, Mitre Sub Technique Name, and source.
