Policies | Axonius SaaS Management

The Axonius SaaS Management Policies module provides an overview of your security posture and allows you to manage misconfigured settings and address security risks. It also shows to what degree your SaaS application settings comply with specific standards.

Axonius adapters collect all the SaaS application settings to provide the visibility that will allow you to address any configuration issues with greater ease.

The Policies module brings all the information together. It shows where specific settings can be found, how the settings affect compliance with various standards, and how to resolve issues.

Getting Started With Policies

From the left navigation bar, click on Policies:

Policies Overview

The top section of the page displays a policies overview:

Use the drop-downs to filter the results shown in the overview:

• Category - You can select to view a specific category of applications, such as Sales, or leave unchecked to view all categories of applications.
• Application - Select specific applications or leave unchecked to view all.
• Account - You can choose to view an application or applications associated with particular accounts.
• Desired date range

The policy overview graphs and data include:

• Properly configured settings - The number of settings that are currently configured to meet the requirements of the different standards covered by this report, and their impact level, as a percentage, on compliance requirements (red for high, orange for medium, blue for low, gray for recommendation).
• Misconfigured settings - The number of settings that are currently not configured to meet requirements of the different standards covered by this report, and their impact level, as a percentage, on compliance requirements (red for high, orange for medium, blue for low, gray for recommendation).
• Standards - The percentage of products (each application may have many products) that comply with the required standard. For example, if 10 products must comply with the CIS standard, and at given time only 5 do, the widget will display 50%.
• Accounts - For each account, you can see the compliance level per standard.

Application Settings and Risks

Scroll down the page to view the Settings table:

Above the table are three drop-downs:

• Application - Select which applications you want to view or leave unchecked to view all.
• Account - Select which accounts you want to view or leave unchecked to view all.
• Last updated - Set a desired date range.

The main settings view includes the following column headings:

• State - A green line indicates that the specific setting name for this application and product meets with the compliance requirements. A red line indicates that it does not.
• Application - e.g. Salesforce, Office365.
• Product - The product associated with the application. For example, Office365 SharePoint.
• Account - A specific user account for the application and product, with unique login credentials.
• Setting name - The setting associated with the standard listed on the far right of each row. For example, Password Expiration.
• Type - The type of setting. For example, Password Policy.
• Impact - Four impact levels indicate the significance of the different settings on the associated standard. These are Recommended, High, Medium, and Low. For example, if for a specific account setting the impact is High, it means a strong negative effect on the ability to meet the associated standard.
• Standards - Different widely adopted standards. For example, PCI-DSS

To resolve issues associated with specific settings, click on the drop-down icon at the beginning of each setting row:

Here you will find the full setting name and current configurations.
Click the link under "Where to find" to go directly to the setting in question and make any necessary changes.