Self-service audit – Symantec Security Expressions Server User Manual

9

Self-Service Audit

What is Self-Service Auditing?

Self-service auditing lets anyone audit just their local Windows computer. Typically, a person

performing self-service audits is not a SecurityExpressions user, but must have administrator

privileges on the computer they're auditing. A designated Web page gives self-service auditors

access to self-service features only.

A self-service audit runs a local system audit against a policy and then allows you to view the
resulting system assessment. You can audit, assess, and, comply with your organization's unique

security policy or a standard policy file. A self-service audit may require the acceptance of a

corporate agreement.

Self-service audits can optionally apply settings defined in an Audit-On-Connect scope. If a self-

service audit uses an Audit-On-Connect scope, it does so to audit just the local system. The other

devices in the scope are ignored.

Self-Service Audit Agreement

An organization may require the acceptance of corporate agreement text before allowing an

audit. Your organization can customize an agreement and include it in the Self-Service Audit

settings. The administrator configures the system to require users to accept the agreement text

before running a self-service audit or skip this agreement.

If you wish to comply with the agreement text, the Self-Service Audit proceeds and the results
display. If you disagree with the agreement, the self-service audit does not occur.

Agreement acceptance remains throughout the session. If you time out or shut down, you must

accept or reject the agreement the next time you want to audit the local system.

The agreement version number logs the user’s acceptance of the agreement.

How to Audit your Local Computer

Self-service audits are for auditing Windows computers only.

To perform a Self-Service Audit:

1. From the server application's home page, click the

Self-Service Audit

link at the

bottom of the page. You may also reach the Self-Service Audit page by browsing to

https://

servername

/seserver/selfservice, where

servername

is the name of the

server on which the server software resides.

If agreement text was configured, you must accept the agreement to continue.

2.

Select a method of self-service auditing by clicking one of the following links.

• Self-audit using a specific policy file - Click this link to select from a list of

policy files.

In order for the list to contain policy files, the administrator of this product must

have already created policies and associated policy files with them. If the Policy File

list is empty, ask the product's administrator to create some policies.

• Self-audit against a list of policy files that apply to your computer - Click

this link to self audit based on an Audit-on-Connect scope, which has the ability to