Configure remediation policies on tag audit findings

  • Rversion finale: Australia
  • Mis à jour 12 mars 2026
  • 1 minute de lecture

    • Configure and preview remediation options, generate keys, and perform actions to remediate non-compliance or failures that are based on tag audit reports.

    Avant de commencer

    Ensure that tag policies are configured and in Active state.

    Role required: sn_itom_tag.tag_governance_admin, admin

    Pourquoi et quand exécuter cette tâche

    You can run remediation automatically if you map a remediation policy to a tag policy. You can also update the tags of non-compliant CIs at the cloud provider's end in real time.

    Configure remediation policies and logic and also enable updating tags on cloud resources associated with the following CMDB classes:
    • Virtual Machines
    • Compute Security Groups
    • Storage Volumes
    • Cloud Networks
    • Cloud Subnet
    • Network Interfaces
    • Load Balancers
    • Availability Zones
    • Public IP addresses
    • Storage Accounts
    • Resource Groups
    The list of CMDB classes for which you can update tags on CIs in the CMDB as well as cloud resources also displays on the Tag Remediation form. If you select the Update Tags in Cloud check box in the Remediation form, remediation will only preview CI failures belonging to the CMDB classes listed.

    Procédure

    1. Navigate to All > Tag Governance > Remediation.
    2. Select New to create a new record.
    3. In the Name field, provide a unique descriptive name.
    4. In the Policy field, select the Lookup icon lookup icon.
      Remarque :
      The Policy Type field is automatically populated after you select a policy from the lookup list.
    5. In the Tag Policies list, configure a remediation policy in one of the following ways:
      • Select an existing tag policy from the lookup list.
      • Select New. Fill in fields on the Tag Policies form (the fields are described in Tag Policies form.
        Remarque :
        If you are creating a new tag policy, you must run an audit before you can run remediation flows.
      You have created or selected a policy for the remediation record.
    6. Facultatif : Select the AutoRemediation check box to automatically run remediation on non-compliant CIs.
      When an audit run finishes, remediation runs on all CIs with policy failures.
    7. Facultatif : Select the Update Tags in Cloud check box to apply remediation and update the tags in the relevant cloud provider environment for supported CMDB CI classes.
      Important :
      The Update Tags in Cloud feature works only for AWS and Microsoft Azure Cloud resources for CMDB classes listed in the Tag Remediation form. See Performing real-time updates to tags for cloud resources.
    8. On the Tag Remediation form, select Submit.
      The remediation policy is configured. The Tag Remediations list opens.