The correction tool lets you correct some security items directly from the ESM console. Not all report messages can be corrected from the ESM console. Corrections are made on the basis of the module and the operating system. The checks on a UNIX platform may be correctable while the corresponding checks on a Windows NT platform may not.
Evaluate each message in the Security report, considering the current computer configuration and how the computer may change. The current settings may be more appropriate than the setting that is defined in the security policy. If the current settings are more appropriate for the situation, update the policy or suppress the item from the report.
Symantec ESM corrections modify the computer where the agent resides. To correct a reported item, you must have access to an account with privileges on the agent computer. These privileges include the following:
Use the following accounts while making corrections to computers in a domain or trusted domain:
Symantec ESM logs on to the computer as the privileged user and tries to perform the correction. If Symantec ESM successfully makes the correction, the Correctable/Updateable value in the grid changes from Correctable to Corrected. If the correction is not successful, Symantec ESM reports an error message.
To correct a Security report item