Fortinet black logo

Administration Guide

Severity level

Copy Link
Copy Doc ID 2cb222d1-3405-11ea-9384-00505692583a:650071
Download PDF

Severity level

You can configure custom scans with a Severity Level setting. The Severity Level controls whether a host loses access to the network or only receives a warning when it is not in compliance with the scan. When the host fails a custom scan with a severity level set to warning, the experience varies, depending on the type of security agent that is being used.

Required

When a custom scan severity level is set to Required, if the host fails the scan, the host is set to At Risk. The browser is redirected to a web page that contains details about the requirements the host failed. The host self-remediates (corrects the issues causing the failure) and rescans until it meets all requirements. When the host passes the requirements, it is moved to the production network.

The Scan Results section of the Health tab on the Host Properties window shows a Failed or Passed result. See Host health and scanning.

Warning

When the host fails a custom scan with a severity level set to Warning, the experience will vary depending on the type of security agent that is being used.

Dissolvable Agent

When a host fails the scan, the browser is redirected to a web page that contains details about the requirements the host failed. The web page is divided into two sections. One section contains required severity level items the host failed; the other contains warning severity level items the host failed.

If the host failed only warning severity level items, a Register Now button is available on the web page. The user clicks the button and is moved to the Success web page.

If the host failed required and warning severity level items, the host must self-remediate until all items in the Required section are corrected. When only Warning level items are listed in the Warning section of the web page, the Register Now button becomes available. The user clicks the button and is moved to the Success web page. The host is not fully compliant with the endpoint compliance policy, but is allowed on the production network.

Persistent Agent

If the host fails the scan for only items with the severity level set to warning, a Warning message is sent to the host and the host is moved to the production network.

If the host fails items with severity levels set to Required and Warning, the host is moved to the remediation network. The browser is redirected to a web page containing details about the requirements the host failed. The web page is divided into two sections. One section contains Required severity level items the host failed; the other contains Warning severity level items the host failed.

The host must self-remediate until all items in the Required section are corrected. When the only items listed are in the section containing the failures for severity level set to Warning, the user receives a warning message that his computer is not fully compliant with the endpoint compliance policy. The host is then allowed on the production network.

Configure the Warning message in System > Settings > Persistent Agent > Security Management. See Security management.

The Scan Results section of the Health tab on the Host Properties window shows a warning result. See Host health and scanning.

Severity level

You can configure custom scans with a Severity Level setting. The Severity Level controls whether a host loses access to the network or only receives a warning when it is not in compliance with the scan. When the host fails a custom scan with a severity level set to warning, the experience varies, depending on the type of security agent that is being used.

Required

When a custom scan severity level is set to Required, if the host fails the scan, the host is set to At Risk. The browser is redirected to a web page that contains details about the requirements the host failed. The host self-remediates (corrects the issues causing the failure) and rescans until it meets all requirements. When the host passes the requirements, it is moved to the production network.

The Scan Results section of the Health tab on the Host Properties window shows a Failed or Passed result. See Host health and scanning.

Warning

When the host fails a custom scan with a severity level set to Warning, the experience will vary depending on the type of security agent that is being used.

Dissolvable Agent

When a host fails the scan, the browser is redirected to a web page that contains details about the requirements the host failed. The web page is divided into two sections. One section contains required severity level items the host failed; the other contains warning severity level items the host failed.

If the host failed only warning severity level items, a Register Now button is available on the web page. The user clicks the button and is moved to the Success web page.

If the host failed required and warning severity level items, the host must self-remediate until all items in the Required section are corrected. When only Warning level items are listed in the Warning section of the web page, the Register Now button becomes available. The user clicks the button and is moved to the Success web page. The host is not fully compliant with the endpoint compliance policy, but is allowed on the production network.

Persistent Agent

If the host fails the scan for only items with the severity level set to warning, a Warning message is sent to the host and the host is moved to the production network.

If the host fails items with severity levels set to Required and Warning, the host is moved to the remediation network. The browser is redirected to a web page containing details about the requirements the host failed. The web page is divided into two sections. One section contains Required severity level items the host failed; the other contains Warning severity level items the host failed.

The host must self-remediate until all items in the Required section are corrected. When the only items listed are in the section containing the failures for severity level set to Warning, the user receives a warning message that his computer is not fully compliant with the endpoint compliance policy. The host is then allowed on the production network.

Configure the Warning message in System > Settings > Persistent Agent > Security Management. See Security management.

The Scan Results section of the Health tab on the Host Properties window shows a warning result. See Host health and scanning.