Creating reports from findings

A finding is the result of a check on an endpoint at a specific point in time. When you run an assessment, the results appear on the Findings page in the Compliance tab or in the Vulnerability tab. Use the provided categories on the Findings page to filter results and save those filtered results as reports. Using findings, reports to be customized and re-run using any combination of available data.

Filter compliance findings

From the Comply menu, click Findings. The findings of compliance assessments are displayed in the Compliance tab.

You can filter findings by Computer Group and expand the All Filters link to use the following additional filters: Rule ID, Endpoint, Operating System, and Status (pass or fail).

Click Customize Columns to add or remove categories from the findings grid.

Compliance finding fields defined

Filter findings using any of the following categories. Start typing in each edit fields to view the available items.

  • Standard: A collection of checks and rules along with logic for how to combine those checks to determine a final status for an endpoint

  • Rule: A standard and any filters applied to that standard in a custom profile

  • Endpoints: The targets that are being evaluated

  • Operating system: The operating system installed on the targets

  • All Findings: Lists all results found by assessments. Click the Get More Details icon for an individual finding to view pop-up with information for that finding.



Filter vulnerability findings

From the Comply menu, click Findings. The findings of vulnerability assessments are displayed in the Vulnerability tab.

You can filter findings by Computer Group, Severity, and expand the All Filters link to use the following additional filters: Check ID, Operating System, CVE Year, Standard, CVSS Score, and Endpoint.

Click Customize Columns to add or remove categories from the findings grid.

Vulnerability finding fields defined

Filter findings using any of the following categories.

  • Check ID: The CVE ID. For example, CVE-2020-0810

  • Endpoints: The targets that are being evaluated

  • Operating system: The operating system installed on the targets

  • Severity: High, Medium, Low, and Info

    . Info represents vulnerabilities for which a CVSS score is pending.
  • All Findings: Lists all results found by assessments. Click the Get More Details icon for an individual finding to view pop-up with information for that finding.

Create reports from findings

Use the Save As button on the Findings page to create a report from the current view.

In the Save Report page, entering the following:

  1. Enter a Report Name. A default name for the report is automatically generated.

  2. Optionally, enter a description for the report.

  3. Select a Content Set. See Tanium Core Platform User Guide: Managing RBAC for information on content sets.

  4. Click Save.





View reports by clicking on Reports in the Comply menu.