41 docs tagged with "Audit"

Displays boot environment audit results for managed Windows devices.

Audits the boot environment, Secure Boot certificates, OEM updates, telemetry, and cumulative update status on a Windows device and returns the results as an object.

Sets this custom field to 1 when the script runs successfully, indicating that the boot environment has been audited and data is available in the other custom fields.

The script audits Windows boot security and populates 24 custom fields (SB_ prefix) with critical data: Secure Boot status, UEFI CA 2023 certificate enrollment, OEM driver updates, cumulative update readiness, BIOS versions, firmware boot entries, WinRE status, telemetry configuration, and registry servicing values. It downloads and executes the core audit script, transforms output for RMM database compatibility, and exports JSON results for custom field integration, enabling administrators to track boot security posture and compliance across managed endpoints.

A centralized dashboard to monitor Windows boot security across all endpoints. Instantly identify missing OEM updates, Secure Boot status, CA 2023 readiness, and potential boot misconfigurations.

This solution outlines the automated process for auditing the boot environment and security configuration of Windows endpoints using ConnectWise RMM.

Audits the boot environment, Secure Boot certificates, OEM updates, telemetry, and cumulative update status across Windows devices and stores the results for fleet-wide reporting.

This stores the TLS Client Enabled state.

This stores the TLS Server enabled.

This group shows the agents where the "TLS Enabled List Audit" script is executed to collect the enabled TLS versions audit list.

This monitor executes the Boot Environment Audit script once per week against Windows Workstations and Servers.

Audits the boot environment, Secure Boot certificates, OEM updates, telemetry, and cumulative update status on a Windows device and returns the results as an object.

Automatically audit Microsoft 365 Conditional Access policies for compliance, misconfigurations, and security gaps. Generate detailed reports with remediation recommendations.

Perform comprehensive security and compliance audits of Microsoft 365 environments. Assess configuration, identify vulnerabilities, evaluate license usage, and generate detailed audit reports with recommendations.

Stores the boot environment details of windows machines returned by the Boot Environment Audit script.

Secure Boot registry AvailableUpdates value. Updated by the Boot Environment Audit task.

Current BIOS version string from Win32_BIOS. Updated by the Boot Environment Audit task.

Secure Boot servicing BucketHash registry value. Updated by the Boot Environment Audit task.

Minimum BIOS version required for CA2023 support from OEM lookup. Updated by the Boot Environment Audit task.

Secure Boot servicing ConfidenceLevel registry value. Updated by the Boot Environment Audit task.

Secure Boot servicing ConfidenceUpdateType registry value. Updated by the Boot Environment Audit task.

Most recently installed Windows cumulative update identifier. Updated by the Boot Environment Audit task.

Timestamp when boot environment data was last collected. Updated by the Boot Environment Audit task.

UEFI db certificate CA2023 enrollment status. Updated by the Boot Environment Audit task.

UEFI dbDefault certificate CA2023 enrollment status. Updated by the Boot Environment Audit task.

Evidence lines from bcdedit for non-Windows EFI indicators. Updated by the Boot Environment Audit task.

Whether non-Windows EFI boot entries are detected. Updated by the Boot Environment Audit task.

UEFI KEK certificate CA2023 enrollment status. Updated by the Boot Environment Audit task.

Whether November 2025 or newer cumulative update is installed. Updated by the Boot Environment Audit task.

Number of available OEM driver updates. Updated by the Boot Environment Audit task.

Comma-separated summary of detected boot conditions. Updated by the Boot Environment Audit task.

Evidence lines from bcdedit for PXE/network boot indicators. Updated by the Boot Environment Audit task.

Whether PXE or network boot entries are detected in firmware. Updated by the Boot Environment Audit task.

Secure Boot state: Enabled, Disabled, or Unknown. Updated by the Boot Environment Audit task.

Windows telemetry state based on registry and DiagTrack service. Updated by the Boot Environment Audit task.

Secure Boot servicing UEFICA2023Error registry value. Updated by the Boot Environment Audit task.

Secure Boot servicing UEFICA2023Status registry value. Updated by the Boot Environment Audit task.

Secure Boot servicing WindowsUEFICA2023Capable registry value. Updated by the Boot Environment Audit task.

Whether Windows Recovery Environment is enabled on the device. Updated by the Boot Environment Audit task.

This PowerShell script shows the list of TLS servers, and client are enabled.

This solution is built to audit the tls version audit.