Kaspersky Endpoint Agent returns the Security Audit task execution result:

• Passed.

  The Security Audit task gets this status if the scan result for the Vulnerability directive is False and for the remaining directives is True.

  

  The directive list is loaded from the selected source of security audit rules.

  Possible directives:

  • Compliance – a scan of this category shows if the system configuration settings comply with the security policy.
  • Inventory – a scan of this category shows if the software or hardware specified in the rules is installed in the system.
  • Miscellaneous – custom scan.
  • Patch – a scan of this category shows if the patch specified in the rules is installed in the system.
  • Vulnerability – a scan of this category shows if the vulnerabilities specified in the rules exist in the system.

  The scan result for a directive can have one of the following statuses:

  • True – Positive scan result.
  • False – Negative scan result.
  • Unknown – unclear vulnerability scan result. The scan finishes successfully, no obvious errors were detected, but it is not possible to make a decision.
  • Error – The scan completed with an error.
  • Not evaluated – no decision regarding the vulnerability is made, but not because of an error. For example, it was not possible to calculate the size of the second partition on the hard drive, because the second partition is missing.
  • Not applicable – The scan conditions cannot be applied to the selected scan scope. For example, vulnerability must be applied to a 64-bit operating system, but the test is performed on a 32-bit operating system.
• Not Passed.

  The Security Audit task gets this status if the scan result for the Vulnerability directive is True, and for the remaining directives is False.

• Warning.

  The Security Audit task gets this status if the scan result for all directives is Error.

• Other.

  The Security Audit task gets this status if the scan result for all directives is Unknown, Not evaluated, or Not applicable.