The Compliance tab provides analysis based on the vRealize Operations Manager alerts that are configured with the alert subtype of Compliance. You use the compliance value as an investigative tool when you evaluate the state of objects in your environment, or when you research the root cause of a problem.

You can use the alert-based compliance that vRealize Operations Manager provides to ensure compliance of your vCenter Server instances, hosts, virtual machines, distributed port groups, and distributed switches. If you also use vRealize Configuration Manager in your environment, you can add the vRealize Configuration Manager adapter to vRealize Operations Manager. The vRealize Configuration Manager adapter provides vRealize Configuration Manager compliance information in place of the alert-based compliance.

The compliance alerts, which have the subtype named Compliance, include one or more symptoms that represent the compliance rules. Compliance alerts that trigger appear on the Compliance tab as a violations to the standard, and the triggered symptoms appear as violated rules. The rules are the alert symptoms, and the symptom configuration identifies the incorrect value or configuration. If a rule symptom triggers for any of the alerts in the standard, the triggered rule violates the standard and affects the badge score that appears on the Compliance tab.

To calculate the compliance badge score, vRealize Operations Manager uses the compliance percentage, total count of symptoms, and the count of triggered symptoms.

The compliance percentage calculation is:

100 - ((triggered symptom count(TR)/total symptom count(TS)) * 100)

In this calculation, the following statements are true.

The total symptom count includes all symptoms in all active compliance alerts.

The triggered symptom count includes all triggered symptoms in all active compliance alerts.

The threshold values determine the following compliance scores:

100 indicates a good score

51-99 indicates a warning score

26-50 indicates an immediate score

0-25 indicates a critical score

To enable alert-based compliance, you must customize a policy. If the compliance alerts are not enabled, the Compliance badge value is 100 and is green, and no violations exist in the list of violated standards. For example, the VMware vSphere solutions provide the alerts for the ESXi host and virtual machine sections of the vSphere Hardening Guide.

To customize policies to enable alert-based compliance, see Customize a Policy to Enable the vSphere Hardening Guide Alerts.

To view the Compliance badge, click Environment in the left pane, select an object, click the Analysis tab, and click the Compliance tab.

Compliance Based on vRealize Operations Manager Alerts Options

Item

Description

Badge status and score

Compliance status and score for the object based on the most critical of the violated standards.

The badge displays one of the following values:

100 indicates a good score, with no triggered symptoms in the compliance alerts. The badge color is green.

51 to 99 indicates a warning that some symptoms triggered in the compliance alerts. The badge color is yellow.

26 to 50 indicates an immediate score, because numerous symptoms triggered in the compliance alerts. You must take action immediately. The badge color is orange.

0 to 25 indicates a critical score. You must take action immediately. The badge color is red.

Compliance Trend

Indicates how the badge value for the object has changed over time.

The trend displays the behavior over time, and identifies when a change in a badge value indicates a change on the object.

The trend data time value is based on the Data Range setting, which is defined in the Time analysis settings for the policy that is associated with the object.

Compliance Breakdown

Displays the breakdown of the compliance standards by alert.

To see the violated standards, click the row in the table of standards. To focus your view on the standards list, click the following buttons.

Violated Standards. Displays only the alerts in the standards where at least one symptom is triggered.

All Standards. Displays all alerts in the standards.

Violated rules list

Violated rules are the symptoms defined in the compliance alert.

If you click the standard, the rules for the standard appear. If a symptom triggered, the rule is considered to be violated. To focus the rules list, use the following buttons.

Violated Rules. Displays only the triggered symptoms.

All Rules. Displays triggered and untriggered symptoms.

Compliance in Related Objects

Displays the compliance status of the related objects.

Use the related objects to determine whether any problems are only affecting the current object, or if related objects are experiencing problems.

Object Resources

Displays the configured resources for the object.

You can find the vSphere Hardening Guides at http://www.vmware.com/security/hardening-guides.html.