This article presents basic commands that are common to both Out-of-the-box and custom policies, all of which are available within the Policy Box.
Custom Playbook policies are not included in the Essentials solution.
Please note that depending on the user's role and permissions, some actions might appear greyed out.
Enable policy
Enabling a policy means executing the detection and validation phases. In practice, it involves detecting matched items and managing exceptions, if there are any. After enabling a policy, tags for matched items and exceptions will appear in the Policy Box, and the full report will be populated with the detected matched items and set exceptions.
Remember that if you enable a policy but do not enable the remediation, no actions will be executed on the detected matched items.
Enable remediation
Remediation refers to actively managing the matched items with the goal of resolving them. In other words, it involves executing the associated workflow to address the detected issues.
You can configure an automated schedule for the remediation process or choose to trigger it manually.
To run the remediation manually from the Policy Box, click on “Run remediation”. A warning will appear before proceeding.
Discover what remediation is and how it works.
Disable remediation
Disabling a policy in the Playbook Policy Library will turn its box grey and move it to the bottom of the list once the page is refreshed. If you disable a policy's remediation within the Governance Center, the policy will be removed from the list upon refreshing.