Non-Compliance issue

Similar Messages

• MBAM 2.5 integrated with SCCM 2012 SP1 compliance issue

  Hi,
  I have installed MBAM 2.5 in a SCCM integrated topology. GPO for encryption on the OS drive only have been deployed and encryption completed using the MBAM client. When running the compliance report and evaluating using the SCCM client the compliance comes
  back as non-compliant. I have tried several tweaks to the GPO but had no luck getting it to report as compliant. Using the dashboard report to try and pin point why it is non-compliant shows as non-compliant but using the reasons in the top right corner all
  have 0 instances.
  Is there a log file on the local system that can tell me what aspect is causing the status?

  In the Event Viewer, there is MBAM node, you will find all MBAM client events there.
  Also, review your GPO and see what encryption types are allowed and which are required. Maybe one reason would be, that your GPO requires something, which your client hasn´t done yet, like PIN code.
  I´ve seen issues with not being compliant to policy before, and there was some explanations of this, if you google around. I´m also intrested to get knowing this, because I couldn´t solve this compliance issue.
  For customer reporting, I just did query in SCCM where I listed ecrypted status and drive letters, that was a "customized report method" to tell customer, are all their Computers encrypted or not.

• SCCM 2012 patch compliance issue

  Hi All,
  In my organization we are facing patch compliance issue.
  in my clients all patches are installed and sent the state messages to MP.however most of the clients are having 0% compliance are showing in report.
  in overall compliance report it is showing "compliance sate unknown" for most of the clients.
  done the software update scan cycle, no errors in WUAhandler.log and windowsupdate.log
  updatestore.log etc.files. however same location only few machines are showing 100% compliance and most of the machines are showing non-compliance (0% compliance)
  please help us to resolve the issue.
  Note: all machines are patches installed successfully. only report is showing "compliance state unknown"

  How much time are you allowing? State messages are only submitted every 15 minutes by the client and information in the console is summarized every 1 hour (both by default); i.e., none of this is instantaneous.
  Reports will reflect the up to info though. Have you directly examined WMI on a target system to verify it's patch compliance state?
  Jason | http://blog.configmgrftw.com | @jasonsandys

• Rfc822 Compliance issue line added by system POTENTIAL Spam

  Hello,
  We have a problem with below said code...
  sun.net.smtp.SmtpClient mail = new sun.net.smtp.SmtpClient ( "mail.primary-domain.com" );
  mail.from ( "[email protected]" );
  mail.to ( "[email protected]" );
  PrintStream msg = mail.startMessage ( );
  msg.println ( "To: [email protected]" );
  msg.println ( "Subject: Hello!" );
  msg.println ( );
  msg.println ( "Hello " );
  msg.closeServer ();
  I am getting the mail as
  Subject: none
  From :'rfc822 Compliance issue line added by system POTENTIAL Spam'
  To: 'rfc822 Compliance issue line added by system POTENTIAL Spam" <nobody@????.com>'
  Our smtp server is hosted on primary-domain. For secondary-domain, I created MX record pointed to primary-domain.
  Why I am getting this zunk in From and To address.
  Please Help me with this problem.
  Thanks in advance,
  V.T.Krishna.

  You are trying to use your mail server (primary-domain.com) to send mail that appears to have come from a different mail server (second-domain.com). This is a favourite trick of spammers. If you want to do this you should connect to the second-domain mail server and use it. Or you should use a from-address that belongs to the primary-domain.

• I am very annoyed at the Creative Cloud set up and the non-stop issues and problems

  I am very annoyed at the Creative Cloud set up and the non-stop issues and problems!  I am paying monthly for this service and it is constantly failing in some way!  So far in three months I have had to uninstall and re-install Photoshop THREE times because it stopped working properly and Illustrator I have had to do that same to TWICE!  That isn't including the other apps that have had issues!  I don't have the time to constantly be un-installing and re-installing all or some of the Creative Cloud because your developers are not making a product that works consistently for the money you are charging!  It is costing me more than just this monthly fee!  And I am even less impressed with the fact that I cannot email someone for assistance in resolving these issues.  Really Adobe?

  Adobe contact information - http://helpx.adobe.com/contact.html may help

• 508 Compliance Issues

  Hello All,
  I am trying to fix 508 compliance issues for SSRS reports in Pdf format (exported from SSRS toolbar).
  I have tried finding the correct cummulative patch or update but don't get the correct one for 2008 R2 version. After some research i also tried to include custom JQuery in Reeports.aspx or ReportViewer.aspx 
  Can someone please suggest correct direction in fixing the 508 compliance issues?
  thanks in advance

  Hi newcd,
  I just read the VPat for SQL Server 2008 R2. I do not see where there are accessibility issues for the PDF format. Can you please explain?
  http://www.microsoft.com/en-us/government/products/section-508-vpats/default.aspx#fbid=vv_eVaIKitQ
  If this is a bug, to get it fixed you would need to contact customer support.
  https://support.microsoft.com/en-us/gp/profsup/en-au?wa=wsignin1.0
  Brad Syputa, Microsoft Power BI This posting is provided "AS IS" with no warranties.

• HDCP Compliance Issue, Everything is Compliant Though???

  I am having a issue playing Blu Ray disks. I continue to get a HDCP compliance error everytime I try to play a Blu Ray video.  I am using arcsoft TMT6 on windows 7. I checked to make sure my monitor and video card are both HDCP compliant, and they both are. I used to be able to watch Blu Ray movies, and I'm not sure what changed, or why I cant watch them now. Also, I used cyberlink BluRay advisor and it said my "software player was not found" and "video connection type is digital without HDCP". Those are the only two problems found. I have a HP 2310 series wide lcd display and have a ATI Radeon HD 5570 video card, and am using a HDMI cable to the monitor. Can someone please help me with this. 

  Hi Eric,
  The Cyberlink BD Advisor only look for a Cyberlink BD software player.  You might very well have a perfectly good BD HDCP certified software player and Cyberlink won't indicate that you have it.  Your non-Cyberlink BD player might need updating to play the new BD titles.
  The other issue might be a loose or faulty HDMI cable, a bad video card, corrupted video driver or a monitor problem.
  Power off the PC and monitor. Check the cables for tightness.  Be sure that you monitor has only one video connection and that it is a HDMI cable. Now try a monitor reset by unplugging the monitor's power cord and then hold down the power button for 30 seconds. 
  If you still have issues then try reinstalling the video card driver or installing the latest AMD driver from the AMD web site.
  HP DV9700, t9300, Nvidia 8600, 4GB, Crucial C300 128GB SSD
  HP Photosmart Premium C309G, HP Photosmart 6520
  HP Touchpad, HP Chromebook 11
  Custom i7-4770k,Z-87, 8GB, Vertex 3 SSD, Samsung EVO SSD, Corsair HX650,GTX 760
  Custom i7-4790k,Z-97, 16GB, Vertex 3 SSD, Plextor M.2 SSD, Samsung EVO SSD, Corsair HX650, GTX 660TI
  Windows 7/8 UEFI/Legacy mode, MBR/GPT

• CF 7 PCI compliance issue

  There is a security flaw in the wildcard ISAPI DLL in CF7 - Documented here:
  http://blogs.msdn.com/asiatech/archive/2009/03/13/why-private-ip-address-is-still-leaked-o n-iis-server-even-after-applying-fix-834141.aspx
  Is there an update to this ISAPI DLL that fixes this issue?
  Thanks.

  Jochem,
  You wrote:
  >So configure a Host header in your IIS website.
  I wish it was easy as that.
  Doing that works fine without the wildcard dll enabled. Unfortunately without it enabled, the CF process fails.
  Enable the DLL and the private IP headers are leaked.
  >2. I fail to see where the PCI specifiction says said behaviour is non-compliant.
  That link is no where near a full compilation of the reasons that a site would fail PCI compliancy.
  It makes sense that one would fail under the circumstances that the private IP address is being leaked. That does present some potential issues for hackers to try and take advantage of.
  The specific PCI rejection is below. The article that they quote in their rejection does not correct the issue as it is specifically related to the DLL.  As mentioned in the link in the very first post of this thread, the issue is readily evident by turning on/off the DLL requirement. Unfortunately our sites require it.
  "Synopsis :  This web server leaks a private IP address through its HTTP headers.   Description :  This may expose internal IP addresses that are usually hidden or masked behind a Network Address Translation (NAT) Firewall or proxy server.   There is a known issue with IIS 4.0 doing this in its default configuration. This may also affect other web servers, especially on a misconfigured redirection.  See also :  http://support.microsoft.com/support/kb/     articles/Q218/1/80.ASP See the Bugtraq reference for a full discussion.  Risk Factor:  Medium  / CVSS Base Score : 5.0 (CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N) CVE : CVE-2000-0649 BID : 1499 Other references : OSVDB:630   "

• PCI Compliance Issue

  I'm trying to make our Exchange 2013 server PCI compliant.  TO do this, I've turned off SSL2 and 3, PCT1, and TLS 1.0.  
  When I turn off TSL1.0, none of our Outlook clients can connect.  Is there a change I need to make somewhere so they use TLS1.1 or above?
  N00b here, so I may have the terminology wrong.
  Thanks.

  Jochem,
  You wrote:
  >So configure a Host header in your IIS website.
  I wish it was easy as that.
  Doing that works fine without the wildcard dll enabled. Unfortunately without it enabled, the CF process fails.
  Enable the DLL and the private IP headers are leaked.
  >2. I fail to see where the PCI specifiction says said behaviour is non-compliant.
  That link is no where near a full compilation of the reasons that a site would fail PCI compliancy.
  It makes sense that one would fail under the circumstances that the private IP address is being leaked. That does present some potential issues for hackers to try and take advantage of.
  The specific PCI rejection is below. The article that they quote in their rejection does not correct the issue as it is specifically related to the DLL.  As mentioned in the link in the very first post of this thread, the issue is readily evident by turning on/off the DLL requirement. Unfortunately our sites require it.
  "Synopsis :  This web server leaks a private IP address through its HTTP headers.   Description :  This may expose internal IP addresses that are usually hidden or masked behind a Network Address Translation (NAT) Firewall or proxy server.   There is a known issue with IIS 4.0 doing this in its default configuration. This may also affect other web servers, especially on a misconfigured redirection.  See also :  http://support.microsoft.com/support/kb/     articles/Q218/1/80.ASP See the Bugtraq reference for a full discussion.  Risk Factor:  Medium  / CVSS Base Score : 5.0 (CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N) CVE : CVE-2000-0649 BID : 1499 Other references : OSVDB:630   "

• Windows 8.1 Pro Non-Unicode Issue: CS6 Standard

  I use WIndows 8.1 Pro English, I installed the CS6 Standard in Spanish, I changed the language for the non-unicode programs to spanish but still cannot use the Illustrator, I am having issue only with the Illustrator, noting that in the installation I was prompt for Spanish(Latin America) or Just Spanish, I clicked on Spanish(Latin America), but in the non-Unicode languages there is no Spanish(non-Unicode) they have Spanish per countries.

  I have the same problem did you manage to find the solution? is impossible to contact adobe helpers, they just hide all contact

• Elements 7 freezing/non-responding issues

  I have been trying to work with Elements 7 and am frustrated with it freezing up when getting into the organizer and only doing one or two "layers" of viewing and editing.  I am running Vista and everything is up to date.  Memory is 6GB or RAM, and defrag is on schedule.  CCleaner helps also.  Norton Internet Security is my Antivirus.   Other aspects of my computer seem to running fine...only Elements 7 gives the freeze up.
  I have tried clicking on Adobe Active File Monitor to manual (made no difference.)
  I have tried going into Elements preference, performance and upped the memory usage amount to high level.  (still freezes)
  I have eliminated other "working" programs from running while I use Elements 7 (doesn't seem to make a difference)
  Thanks for any other help or suggestions...
  I would love to be able to view and edit my recent bike trip pictures!
  Skip

  You said "None of my other catalogs or pictures (7100+) showed up  until I opened up my organizer the way I always did before this freezing of PSE.  I do that by clicking on the blue Organizer box which then shows all my albums created before plus pictures since the last six months."
  When you create a new catalog, it would be empty, no matter how you launch Organizer. So, I don't know why you see your photos when launching Organizer this way.
  Hangs and Freezes are often due to some third party software. Bu before that, can you try a re-install?
  If yes, then after uninstalling the program, restart your system and then install it. That might resolve the issue.
  Thanks
  Andaleeb

• Non nte5 issue

  I have a non nte5 at my warehouse
  my router (HH4) is connected in one office(a) with a filter and a phone and in another office(b) i have a another phone connected to the other socket via filter.
  whenever i remove the adsl filter from the socket in office(b) the router resets
  i have tried swapping filters, still same issue
  this has just happened recently  was fine before
  also once it resets internet works fine, but after about half hour it slows down alot, when i try to open a page it just says opening for a few minutes then when it does open it takes ages to load
  same problem on wireless
  any help appreciated
  thnx

  sounds like a faulty socket or wiring inside the socket
  are you a business user as you mention the line is in a warehouse in your office as this forum is for residential customers  business customers should go here https://business.forums.bt.com/
  If you like a post, or want to say thanks for a helpful answer, please click on the Ratings star on the left-hand side of the post.
  If someone answers your question correctly please let other members know by clicking on ’Mark as Accepted Solution’.

• Non-Compliant Issue

  Can anyone explain to me why the following item is considered non-compliant on this list? It states for the reason that it could not find a compatible TPM, but when you look at the details it clearly shows that it is encrypted and that TPM is the protector
  type.

  I answered my own question on this one.  It is apparently a bug in MBAM 2.5 when using AES-256 with Diffuser.  I installed Hotfix KB2975636 on the client system and it corrected in the next update without an issue. 
  If anyone else is looking for this Hotfix, here is the link.
  https://support.microsoft.com/kb/2975636?wa=wsignin1.0

• WRT610n help with PCI compliance issue ICMP timestamp

  I'm having a issue with ICMP times stamps and pci compliance, they keep saying it is allowing timestamps, but my firewall shows it not checked, I see no particular option on the router to disable timestamp
  again I have a wrt610n ver 2 router
  anyone run into this?
  i sure could use some help
  Thanks!

  Did you tried to upgrade/re-flash the firmware on your linksys router.

• SCCM SP1 Upgrade - Updates compliance issues

  After my upgrade to SP1 I noticed that the compliance level of my update lists had dropped considerably. 
  I am noticing there are 200-230 clients in an “unknown” compliance state. 
  I am worried that something is wrong with the software updates compliance policy or worse something wrong on over 200 of my clients.
  I have applied all the hotfixes that were suggested before upgrading to SP1. 
  WSUS is up to date with newest hotfixes as well.  The majority of my clients health checks are fine. 
  Not all of my clients are updated to the latest SCCM client 7804 but I wouldn’t think this would cause an issue with update compliance.
  I triple checked my client settings on my primary server.  Clients are set to check every hour. 
  Nothing was changed for this before the SP1 upgrade.
  Am I missing something else?  Is there a specific log to check for this? 
  It’s strange to me that before the upgrade I had high compliance rates and now they are very low.  Its been 3 weeks since the SP1 upgrade and I would think by now comliance levels would increase so patience isnt an issue here. 
  Any help would be appreciated.
  Ryan Ventimiglio

  Yes, I know this is an old post, but I’m trying to clean them up. Did you solve this problem, if so what was the solution?
  Generally time will solve this problem.. give it a few days to clean itself up. If that doesn’t work then pick a few clients and review their SU logs to see why they are showing as unknown.
  Garth Jones | My blogs: Enhansoft and
  Old Blog site | Twitter:
  @GarthMJ