Reconciliation provides you the flexibility to manage the asset records conditionally when the records get into the assets system. If the external data import does not import the assets to CCS, you must first reconcile the assets and then add the assets to CCS. Reconciliation rules let the administrator manage the asset information when imported into the system. A reconciliation rule consists of a condition and an action. A set of actions is executed when the asset satisfies the specified set of conditions.
CCS represents imported data in terms of the following three attributes:
An asset can be any target object against which an evaluation can be executed. For example, assets, asset groups, folders, or any entity can be classified as assets.
An assessment is the parameter that you use to assess your subject. For example, CCS standards or checks, policies, mandates, and third-party controls can be classified as assessments.
A status is the outcome or the resultant value of an evaluation. Once you identify the asset and the assessment attributes, all the remaining attributes are considered as the status of the assessment. For example, a particular range of DLP incident IDs can be mapped to the 'Pass' status in CCS. Or, a particular value for password length can be mapped to the 'Fail' status in CCS.
For CCS to understand the result, the evaluation outcome must be mapped to one of the following:
The following table is an example of the policy compliance without CCS asset correlation.
The columns are grouped based on the field mapping of Asset, Assessment, and Status. From the data schema you can have more than one column mapped to Asset, Assessment and Status. For example if you have ten columns in the data schema, any 3 columns can map to Asset, any 3 columns can map to Assessment and any 3 columns can map to Status.