- 20 Aug 2023
- 3 Minutes to read
- Updated on 20 Aug 2023
- 3 Minutes to read
Use the Application Settings to see SaaS application settings data retrieved from your Axonius adapters. This allows you to
- See the extent to which the SaaS applications in your organization are configured in compliance with specific security standard
- Understand how individual settings affect compliance with various standards
- Manage misconfigured settings
- Address security risks
- Locate specific settings in an application
- and more...
Click the Assets icon and from the left-pane, select Application Settings.
The Application Settings page opens displaying the default view. Not all of the fields are displayed by default. Use Edit Columns to add or remove columns. Each user can customize what fields appear in their own, personalized default view. For more information, see Setting Page Columns Displays.
Click the arrow next to any of the fields to see more details about that field.
Application Settings Fields
There are many fields that you can view and query on the Application Settings page. This includes the following categories of fields:
- Application - Name of the application that the setting is associated with.
- Setting Name - Name of the setting.
- Settings Score - A calculated score based on the validity of all relevant entities for the setting.
- Level - The entity within the application that the setting relates to (account, group, role, user, etc.).
- Impact - The level of impact a setting has on your organization's security vulnerability.
- Standards - The specific standards or specific sections within a standard.
- Link - Link to the page in the application where the setting is located.
- Product Documentation - Link to the service/product provider documention for the specific setting.
- Configuration Values - List of settings values of all entities (account, roles, groups, users, etc.) that the setting is configured for. This includes entity information, setting value, recommended value, and the value's validity.
In the Application Settings page, you can hover over this field to see all the values. On the individual setting's profile page, the values are displayed in a table.
Creating Queries on Application Settings
The Query Wizard on the Application Setting page allows you to create a unique set of queries. You can query fields such as the Level, Impact, Settings Score, and more. You can add additional levels to the query, such as querying by compliance standards and level. Use these queries to find out which settings exist with asset context in your environment or how many applications have a particular settings score. Refer to Creating Queries with the Queries Wizard to learn more about creating queries.
For example, this query enables you to determine how many high-impact settings in your SaaS environment are misconfigured according to a specific security standard:
After running the query, the table shows the queried settings, filtered by the criteria you defined in your query.
Add Tags to Application Settings
Use tags to assign context to your settings for granular filters and queries. Apply new or existing tags to the selected settings. For example, you can tag a setting for your won custom standard, settings that shouldn't be tracked, and more. The list of selected tags is applied to all selected settings.
Refer to Working with Tags to learn about adding tags to settings.
View an Application Setting Profile
You can click on an individual setting asset to see all the data for that particular setting. For more information, see Asset Profile Page.
The details provided in the individual settings profile include a link to change the setting in its application, a link to the documentation for the setting for more information, relevant entities for that setting, relevant standards and other fields that allow you to examine the data for that setting.