Hey, I could now get to see the settings inside an imported policy. (I actually had to create a new policy by importing from existing clint to get one)
Although the settings provided in the policies of CESM console look good, they are not yet complete or sufficient.Besides,
I strongly feel that there should be a way of strong communication and alerting mechanism between CESM and it's clients.
Whenever something is done to clients from CESM
(may it be a database update or the start of a system scan or a new policy change), there must be
(at least an option to display) an alert
(for a predefined time period) on the client system notifying this change. and this alert should be available in CIS local interface
(until the end of the event, i.e., database update or system scan)for any client side user to notice that something is happening from CESM side.
The user should be able to contact/request for a permission for a possible temporary override or something getting done from CESM admin
(for example trusting an application or excluding a folder from scan or temporarily pausing the system scan) which gives a corresponding alert on the CESM console asking the admin to take decision.
Similarly, there should be a notice or alert on CESM console that a client side override has happened on some system
(like somebody with admin rights has changed something inside the settings-the CESM admin should be able to see what settings have been changed or how the policy is now non compliant...so that he can take the required action to whether reapply policy on client or to keep it and import as a new policy)or
a some client side activity has happened
(like programs getting sandboxed or virus infection found), and user is unable to take any decision.
Anyway, this is quite a good move in the correct direction. I appreciate your work and I am looking forward to a more powerful and configurable CESM in the next beta.
Note: Somebody please answer my previous posts. I am waiting... 