ICS Integrity provides configuration policies that allow you to monitor specific configuration parameters and identify when the configuration of these parameters falls outside a defined limit. An administrator can create a configuration policy for any item that ICS Integrity monitors, such as the minimum patch level for an operating system, the minimum firmware level for a controller, or the maximum value for a tag, such as the maximum pressure.
An administrator creates the policies you need, selects the asset for each policy, and then runs the policy so you can evaluate the results. For defined standards that apply to multiple assets, you should use baselines to define the standard for each risk level and to evaluate those baselines. For more information about baselines, see Understanding Baselines and Deviations.
You can view and filter the policy information and results. For more information, see Viewing a Configuration Policy and Filtering Policy Results.