Checks

When a rule is run against the infrastructure (resources) associated with your cloud account, the result of running a Rule against a resource is referred to as a Check. For example, a security group may have 80 TrendAI Vision One™™ – Cloud Risk Management Rules (Checks) scanning for various risks and vulnerabilities.

To view Checks associated with an account, click Browse all checks on the summary section of the Cloud Risk Management Dashboard.

Each Check has the following information associated with it:

You can take the following actions on a Check:

Every Rule has an implementation associated with it that determines whether a Check against the Rule is successful or not. For example, if a storage resource has public read permissions enabled, the corresponding Rule is applied to all matching resources in your cloud account. If any resource has public read enabled, the Check for that resource is a failure.

Some rules are documented by Cloud Risk Management but cannot be tested against your cloud infrastructure due to not being applicable to cloud infrastructure or limitations of the data provided by the cloud provider. Rules that are only informational are identified as Not Scored.

Cloud Risk Management may not be able to test the Rule completely, but can provide you with some high-level information that can be beneficial. For example, you can check whether alternate contacts for your cloud accounts have been set up. You can pass on the information to your team via a communication channel and keep them informed as well.

You can neither ‘Resolve’ or ‘Suppress’ these Rules as they do not affect your compliance score.

To view a list of all Not Scored Rules in your account: