Misconfigurations (formerly Compliance Scorecard)
Copy link

The Misconfigurations page helps you quickly identify resources that are most at risk, have a security impact, or affect your compliance goals. You can also create exemptions and view remediation details directly from the interface to streamline misconfiguration management.

ℹ️

New experience available

Clicking the Switch to Modern UI button in the top right corner replaces the Compliance Scorecard with the Misconfigurations page. The Compliance Scorecard (Legacy UI) is on by default and you can toggle between the interfaces at anytime. The Misconfigurations page is designed to make compliance workflows faster, more consistent, and easier to use without losing any of your current functionality, including exports. With Misconfigurations, you can:

  • Diagnose misconfigurations more efficiently in the context of the standards that matter most.
  • Visualize exemption status to streamline reviews and remediation.
  • Gain increased performance for quicker risk analysis and compliance posture checks.
  • Manage cloud infrastructure more effectively with improved tag visibility.

Prerequisites
Copy link

Before using the Misconfigurations page, make sure at least one cloud account is connected to InsightCloudSec. While not required, it’s helpful to understand Insights and Compliance Packs.

Explore misconfigurations
Copy link

In InsightCloudSec, a misconfiguration is a resource with security configuration that results in an Insight finding. There’s a large variety of Insights for all resource and cloud account types. Insights also provide criteria for Compliance Packs, which can be used to audit your environment.

To view your misconfigurations:

  1. Log in to InsightCloudSec.
  2. Go to Security > Misconfigurations.

You can filter the displayed resources using:

  • Filters: Select an item or status and click Apply.
  • Scopes: Select a scope, including cloud accounts, badges, or compliance packs and click Apply Scope.

The filter options change based on the current display:

  • By Resource (default): Resources are shown. Expand a resource to see its Insight findings.
  • By Insight: Insights are shown, but scopes are unavailable. Expand an Insight to view affected resources.

Share and take action on misconfigurations
Copy link

The Misconfigurations page provides many options for sharing and remediating misconfigurations, reducing the time it takes to assess and take ownership of remediation activities.

View resource details

Click a resource name or switch to Display By: Resource and click Action (…) > View Resource Details. To learn more about resources and their properties, see Resources.

Share misconfigurations

To download the Misconfiguration Report:

  1. Go to Security > Misconfigurations.
  2. Filter or scope the view if needed. If you do not filter or scope the page, InsightCloudSec generates the scorecard against all cloud accounts and resource types.
  3. Click Share > Download (Excel).
  4. Select one or more Compliance Packs. If you select more than one, InsightCloudSec generates a scorecard for each Compliance Pack.
  5. Optionally, include tags or badges, which adds respective columns to the sheet.
  6. Click Download. Your browser downloads the files.

The Misconfiguration Report is a large downloadable file that compiles Insight performance data for the resources in a selected group of cloud accounts. The report includes:

  • Overview: A summary of the scorecard and its contents, including what Compliance Pack was used, the number of findings, and the severity of the findings.
  • Clouds | Clusters Scorecard: A heatmap of how well the selected cloud accounts are configured for the selected Compliance Pack.
  • Impacted Resources: A list of resources that are misconfigured for the selected Compliance Pack.
  • Exempt Resources: A list of resources that are exempt from one or more of the Insights in the selected Compliance Pack. See Exempt resources from misconfigurations for more information on Exemptions.
  • Insight Notes: Detailed notes and remediation details for the Insights in the selected Compliance Pack.
  • Cloud Results: A list of cloud accounts assessed for the Misconfiguration Report as well as their overall performance.

To generate a shareable link:

  1. Go to Security > Misconfigurations.
  2. Filter or scope the page if needed.
  3. Click Share > Generate Share Link.
  4. Select a Compliance Pack if needed.
  5. Enter a name for the link.
  6. Click Generate, then View or copy the link.
⚠️

Link requirements

Opening the link requires InsightCloudSec access and Domain Admin or Organization Admin permissions in your ICS Organization.

To download a list of misconfigured resources:

  1. Go to Security > Misconfigurations.
  2. Filter or scope the page if needed.
  3. Switch to Display By: Insight.
  4. Click Action (…) > Download All. Your browser downloads the file. The file contains a list of resources that are misconfigured for the selected Insight.

Subscribe to misconfigurations

ℹ️

Need to manage existing subscriptions?

After you create a subscription, you can reconfigure it, delete it, or run it on demand from the Manage Subscriptions page. Cloud storage subscriptions also have the option to validate settings and to be toggled on or off. From the Misconfigurations page, click Share > Manage Subscriptions.

To create an email subscription:

  1. Go to Security > Misconfigurations.
  2. Filter or scope the page if needed.
  3. Click Share > Create Email Subscription.
  4. Select a Compliance Pack. If you scoped to a Compliance Pack, it will automatically be selected.
  5. Enter a Subscription Name.
  6. Select Recipient Email Addresses. The email subscription can only go to an existing user in InsightCloudSec.
  7. Configure the Email Frequency as needed.
  8. Optionally, include tags or badges, which adds respective columns to the sheet.
  9. Click OK.

To create a cloud storage subscription:

  1. Go to Security > Misconfigurations.
  2. Filter or scope the page if needed.
  3. Click Share > Create Cloud Storage Subscription.
  4. Select a Compliance Pack. If you scoped to a Compliance Pack, it will automatically be selected.
  5. Enter an Export Name.
  6. Select a Storage Container Resource. The cloud storage container must be already harvested by InsightCloudSec, which means it appears in the Resources Inventory.
  7. Optionally, enter a Storage Container Prefix to change the path for subscription delivery. By default, the subscription is sent to the root level of the container.
  8. Optionally, include tags or badges, which adds respective columns to the sheet.
  9. Optionally, select to export the subscription as an .xlsx file (the default is a .zip file).
  10. Click OK. The Misconfiguration Report is delivered at 3:00 (UTC) every day.

Take action on misconfigurations

To manage tags:

  1. Go to Security > Misconfigurations.
  2. Switch to Display By: Resource.
  3. Filter or scope the page if needed.
  4. Next to a resource, click Action (…) > Manage Tag(s). The resource properties panel opens to the Tags tab.
  5. Add or remove tags as needed.

To assign ownership:

  1. Go to Security > Misconfigurations.
  2. Switch to Display By: Resource.
  3. Filter or scope the page if needed.
  4. Next to a resource, click Action (…) > Assign Owner.
  5. Select an InsightCloudSec user to associate as an owner.
  6. Click OK.

To view contextual cloud account-based actions:

  1. Go to Security > Misconfigurations.
  2. Switch to Display By: Resource.
  3. Filter or scope the page if needed.
  4. Next to a resource, click Action (…) > View Resource Actions.

Actions relevant to the selected resource appear. The cloud account associated with the resource needs special permissions (referred to as an Automation Full Access policy or role) to perform any of these actions.

To create a Bot for an Insight:

  1. Go to Security > Misconfigurations.
  2. Switch to Display By: Insight.
  3. Filter or scope the page if needed.
  4. Next to a resource, click Action (…) > Create Bot. The Create Bot page opens with some information already provided.

See Creating a Bot for more instructions.

To view remediation details:

  1. Go to Security > Misconfigurations.
  2. Switch to Display By: Insight.
  3. Filter or scope the page if needed.
  4. Next to a resource, click Action (…) > View Remediation Details. The Insight Information panel opens.

Exempt resources from misconfigurations
Copy link

Exemptions exclude a resource from being assessed by a specific Insight. Use exemptions for compliant resources that do not require further evaluation. You can view all existing Exemptions and manage them from the Exemptions page.

Exempt a resource (Display By: Resource)

To create an exemption (select an Insight):

  1. Go to Security > Misconfigurations.
  2. Switch to Display By: Resource.
  3. Optionally, filter or scope the page as necessary.
  4. Next to a resource, click Action > Create Exemption.
  5. Select an Insight.
  6. Select a Start Date.
  7. Optionally, select an Expiration Date.
  8. Enter an Approver Email.
  9. Optionally, enter Notes.
  10. Click Create. The exemption is created.

To create an exemption for a resource:

  1. Go to Security > Misconfigurations.
  2. Switch to Display By: Resource.
  3. Optionally, filter or scope the page as necessary.
  4. Expand a resource.
  5. Next to an Insight, click Action > Create Exemption.
  6. Select a Start Date.
  7. Optionally, select an Expiration Date.
  8. Enter an Approver Email.
  9. Optionally, enter Notes.
  10. Click Create. The exemption is created.

To create multiple exemptions for a resource:

  1. Go to Security > Misconfigurations.
  2. Switch to Display By: Resource.
  3. Optionally, filter or scope the page as necessary.
  4. Expand a resource.
  5. Select as many Insights as desired.
  6. Click Create Exemption.
  7. Select a Start Date.
  8. Optionally, select an Expiration Date.
  9. Enter an Approver Email.
  10. Optionally, enter Notes.
  11. Click Create. The exemptions are created.

Exempt a resource (Display By: Insight)

To create an exemption for an Insight:

  1. Go to Security > Misconfigurations.
  2. Switch to Display By: Insight.
  3. Optionally, filter or scope the page as necessary.
  4. Expand an Insight.
  5. Next to a resource, click Action > Create Exemption.
  6. Select a Start Date.
  7. Optionally, select an Expiration Date.
  8. Enter an Approver Email.
  9. Optionally, enter Notes.
  10. Click Create. The exemption is created.

To create multiple exemptions for an Insight:

  1. Go to Security > Misconfigurations.
  2. Switch to Display By: Insight.
  3. Optionally, filter or scope the page as necessary.
  4. Expand an Insight.
  5. Select as many resources as desired.
  6. Click Create Exemption.
  7. Select a Start Date.
  8. Optionally, select an Expiration Date.
  9. Enter an Approver Email.
  10. Optionally, enter Notes.
  11. Click Create. The exemptions are created.

Use the Compliance Scorecard (legacy UI)
Copy link

Legacy UI details

!!!(_shared/CRC-ICS/compliance-scorecard.md)!!!