If you checked the Remediation option in a policy you created, then the policy will build a job for each computer to remediate ** smg 08/03/2015 - If it were me I'd add a single Remediation page and step the user through both the configuration and approval of remediation. **
A Security Analysis Remediation policy requires approval for each computer before running the task to fix non-conforming settings. However, before this job is delivered to the computers, you must approve it.
To approve remediation, do the following steps: [[following are the steps and screenshot for Symantec]]
- Click on the Remediation Approvals (smaller) tab at the top of the policy view.
- You may view the job that has been created by clicking the View link to the left of each computer in the list.
- Check the Approve box next to each computer that is approved to perform the remediation steps. To approve all computers in the list, check the Approve box in the header of the column.
- Click Save at the bottom of the page.
- Once saved, the computers are immediately sent the remediation job and will perform another analysis afterwards.
The selected approval process, configured in the policy's selected approval type, determines how you approve remediation.
For processes controlled by external systems (such as Microsoft SharePoint or LANDesk Service Desk) you'll need to go to the associated application to approve. For the Manual Approval Process you can use the Remediation Approvals section in the policy to view requests, the associated tasks, and approve or deny the requests.
Select a request and click the "View Detail" button to see the commands that will be run to remediate the computer. Select a command and click "Edit" to view additional details.
After you have reviewed a request then select it and choose Approve to allow the remediation to run or Deny to reject it.