McAfee PASCDE-AB-IA Product Guide - Page 11

Getting started with McAfee Policy Auditor Auditing systems Auditing systems An audit is an independent evaluation of a computer system to determine whether it is in compliance with corporate and industry security standards. Audit results show recommended improvements to reduce risks. McAfee Policy Auditor evaluates systems against independent standards developed by government and private industry. It can also evaluate systems against standards that you create yourself. McAfee Policy Auditor uses audits to determine the compliance status of systems and returns results indicating any areas where the system is out of compliance. Scoring audits When you audit a system with McAfee Policy Auditor, it returns a score indicating how well the system complied with the audit. McAfee Policy Auditor supports the four scoring models described in the eXtensible Configuration Checklist Description Format (XCCDF) 1.1.4 specifications. What's new McAfee Policy Auditor has a number of new features to enhance user experience and expand capabilities. These are the major new features for this software release: • McAfee® Policy Auditor Content Creator - Allows users to create simple benchmarks and fill in the rule values manually or import them from an existing system. • McAfee Benchmark Editor enhancements - McAfee added these new capabilities to the software: • Ability to drag and drop groups • Ability to drag and drop rules between groups • Ability to delete groups • Enhanced display of expired results - Provides detailed information about expired results to help users determine what steps to take. • Server performance improvements - The server database has been rewritten to speed processing and to eliminate duplicate storage. McAfee added four new dashboards to help users understand the status of audits. • Database health tools - McAfee added daily and weekly server tasks to speed database access by reducing fragmentation and rebuilding fragmented indexes. • Improved audit failure status - McAfee Policy Auditor agent plug-in audit exceptions are logged in the ePolicy Orchestrator software server event log. The exceptions can be seen through a new McAfee Policy Auditor server query and dashboard. • Agent debug support - The McAfee Policy Auditor agent plug-in includes a tool to help you solve problems on managed systems. The tool has these features: • Interface - Graphical for Windows systems, console for all supported operating systems. • Audits - Displays and allows you to run available audits. • Benchmarks - Displays and allows you to run available benchmarks. • Checks - Displays and allows you to run available checks. • Debug information - Collect and save information, including the log file and database, to a ZIP file. McAfee Policy Auditor 6.0 software Product Guide for ePolicy Orchestrator 4.6 11