Symantec Security Expressions Server Server User Manual


 
9
Self-Service Audit
What is Self-Service Auditing?
Self-service auditing lets anyone audit just their local Windows computer. Typically, a person
performing self-service audits is not a SecurityExpressions user, but must have administrator
privileges on the computer they're auditing. A designated Web page gives self-service auditors
access to self-service features only.
A self-service audit runs a local system audit against a policy and then allows you to view the
resulting system assessment. You can audit, assess, and, comply with your organization's unique
security policy or a standard policy file. A self-service audit may require the acceptance of a
corporate agreement.
Self-service audits can optionally apply settings defined in an Audit-On-Connect scope. If a self-
service audit uses an Audit-On-Connect scope, it does so to audit just the local system. The other
devices in the scope are ignored.
Self-Service Audit Agreement
An organization may require the acceptance of corporate agreement text before allowing an
audit. Your organization can customize an agreement and include it in the Self-Service Audit
settings. The administrator configures the system to require users to accept the agreement text
before running a self-service audit or skip this agreement.
If you wish to comply with the agreement text, the Self-Service Audit proceeds and the results
display. If you disagree with the agreement, the self-service audit does not occur.
Agreement acceptance remains throughout the session. If you time out or shut down, you must
accept or reject the agreement the next time you want to audit the local system.
The agreement version number logs the user’s acceptance of the agreement.
How to Audit your Local Computer
Self-service audits are for auditing Windows computers only.
To perform a Self-Service Audit:
1. From the server application's home page, click the Self-Service Audit link at the
bottom of the page. You may also reach the Self-Service Audit page by browsing to
https://
servername
/seserver/selfservice, where
servername
is the name of the
server on which the server software resides.
If agreement text was configured, you must accept the agreement to continue.
2. Select a method of self-service auditing by clicking one of the following links.
Self-audit using a specific policy file - Click this link to select from a list of
policy files.
In order for the list to contain policy files, the administrator of this product must
have already created policies and associated policy files with them. If the Policy File
list is empty, ask the product's administrator to create some policies.
Self-audit against a list of policy files that apply to your computer - Click
this link to self audit based on an Audit-on-Connect scope, which has the ability to