Compliance Report Schedule
Use the Send Reports at drop-down to select a time when Lacework starts running a complete compliance assessment, generates reports based on that assessment, and sends those reports to the email addresses listed in the specified alert channel.
The time specified in the drop-down is not the time that you will receive the report email because it takes time to collect the data, generate the report, and send the email. Changes made to report times can take up to one or two report cycles to take effect. Note that this drop-down affects only when reports are generated, not event summaries. Event summaries start generating at 12 PM GMT.
Lacework Policy Subscriptions
Toggle on Automatically enable Lacework default policies to enable any future Lacework default policies when they are introduced. You can also select which severities to enable. Existing policies are not affected.
Resource Management Collection Schedule
Use these settings to configure when to start resource collection and how frequently to perform collection.
Start collection on - Sets the start time for resource collection.
Collection interval - Currently, resource collection is performed every 24 hours.
Filter Suppressed Rules
Toggle on to filter suppressed rules from compliance assessments.
Continuous Assessments
Select what images are monitored for changes in vulnerabilities for a period of 30 days:
- Reassess active images
- Reassess images with a specific tag or label
Selecting both options means Lacework reassess all the active images in last 24 hours in addition to the images with the specified tags/labels.
Tags can contain one * wildcard, such as *mytag or mytag*.
Label keys cannot include the * wildcard. Label values can contain one * wildcard, such as key:*value or key:value*.