Viewing, Editing, and Deleting a Discovery
From the Discoveries list, you can view the details of a Discovery. You can also edit or delete a user-created Discovery. You can also change the scope of a pre-defined Discovery (if applicable) and, in a few cases, the What to find value. (Refer to the Pre-Defined Discoveries and Vulnerabilities section for specific Vulnerability templates.)
NOTE:You cannot delete pre-defined Discoveries and the option will be disabled.
To view a Discovery:
Click the Discovery Type link.
To edit a Discovery:
-
Either:
-
In the Discoveries list, select the Discovery that you want to edit.
OR
-
Open the Discovery that you want to edit.
-
Click Edit.
-
Update the Discovery as needed.
-
Click Save.
To delete a user-created Discovery:
|
|
NOTE: Currently, you can only delete one Discovery at a time. |
-
Either:
-
In the Discoveries list, select the Discovery that you want to delete.
OR
-
Open the Discovery that you want to delete.
-
Click Delete.
You will be prompted to confirm the deletion.
Creating an Assessment
In addition to using the built-in Assessment provided by Quest, you can create your own Assessments based on available Discoveries.
To create an Assessment:
-
From the All Assessments tab click Create.
-
Enter an Assessment Name and Description.
-
If you want to Automatically add Discoveries as they are released by Quest, check this box.
|
|
NOTE: If you check this box, all pre-defined Discoveries that are provided by Quest will be added to the Assessment as they become available. |
-
Click Select Discoveries to display a list of available Discoveries.
-
Select each Discovery you want to add to the Assessment, then click Select.
-
For Domains, select the Active Directory domains that you want to Run this Assessment for. Use the information in the following table for guidance.
| Only selected domains |
-
Select Only selected domains from the drop-down.
-
Click Select Domains, select the domains you want add to the Assessment, then click Select.
The selected domain(s) will display in the list. |
| All except selected domains |
Excluded domains will display in the list. However, when you view the Assessment, all domains will display and those that are excluded are identified in the Status column. |
| All domains |
Select All domains.
All domains configured for your organization will display in the list. |
-
Click Save.
Viewing, Editing, and Deleting an Assessment
From the All Assessments list, you view the details of an Assessment. You can also edit or delete a user-created Assessment.
|
|
NOTE: You cannot edit or delete a built-in Assessment, so the Edit and Delete options will be disabled. |
To view an Assessment:
Click the Assessments link.
To edit a user-created Assessment:
-
Either
-
ln the All Assessments list, select the Assessment that you want to edit.
OR
-
Open the Assessment that you want to edit.
-
Click Edit.
-
Update the Assessment as needed.
-
Click Save.
To delete a user-created Assessment:
|
|
NOTE: Currently, you can only delete one Assessment at a time |
-
Either
-
ln the All Assessments list, select the Assessment that you want to delete.
OR
-
Open the Assessment that you want to delete.
-
Click Delete.
You will be prompted to confirm the deletion.
Assessment Results
You can access the link to results for an Assessment from the All Assessments list.
To access results for a selected Assessment:
Click the corresponding Active Directory domain name in the Link to Results column.
|
|
NOTE: You can only view Assessment results for one Active Directory domain at a time. If the Assessment was run on more than one domain, you can switch to a different domain from the drop-down in the upper right corner of the Results page for the Assessment. |
The Results page for the Assessment is divided into sections:
The first section, Summary of Assessment Vulnerabilities, provides a summary of the last run of the selected Assessment, including:
-
the date and time the vulnerabilities within the Assessment were Assessed on
-
the date and time the data used to assess the vulnerabilities was Collected
on.
NOTE: These field display the signed-in user's local date and time.
Of the total number of Evaluated Vulnerabilities, a graph depicts color-coded results, as described below.
 |
With Vulnerable Objects (n) |
 |
Without Vulnerable Objects (n) |
 |
With Inconclusive Results (n)
|
|
NOTE: An Inconclusive state indicates that data could not be collected for one or more objects being assessed for a non-error-related reason (for example, the scope of an Assessment includes Tier Zero objects but no Tier Zero objects were found, or permissions were insufficient to collect the data). Note that some vulnerabilities require additional permissions in order to be assessed. | |
The second section, Summary of Last 7 Days, shows the following information for the past seven days that the Assessment was run:
| n |
 |
Assessments in compliance |
| n |
 |
Assessments with vulnerable objects |
| n |
 |
Vulnerabilities found |
The third section contains the list of evaluated vulnerabilities, which provides the following information:
-
the Discovery Type in which the vulnerability is defined
-
Created by either:
-
the Vulnerability name, which links to vulnerability-specific detail, including any objects the vulnerability was detected in
-
the date and time when the vulnerability was Last Detected
|
|
NOTE: This field displays the signed-in user's local date and time. |
-
the number of Vulnerable Objects found
|
|
NOTE: A icon indicates that an error occurred while the vulnerability was being evaluated. |
-
the number of Inconclusive results
-
a graphical representation of the 7 Day Trend for the Vulnerability
|
|
TIP: Hover over the line graph to see the number of vulnerabilities (if any) detected per day. |
