CIS Policy scanning with Ivanti Workspace

Hi all,

New around here :slight_smile:

I’m currently working on implementing CIS compliance monitoring using both scan and agent based policies to monitor our current installed base. On a test system I got nearly full compliance for MS Edge (as as start) as these settings were made in HKEY\LOCAL_MACHINE which Insight will look for.

However, for a lot of settings and most of our workstations we use Ivanti Workspace, which puts these settings in the HKEY_CURRENT_USER.
Ivanti will, upon login, create a new empty user and merge the settings with this new user which gets deleted afterwards (saving modifications obviously)

I’ve copied the scan template to reflect the changes, but not unexpectedly this alone does not work. Even if a test user is logged in on the system and I use these credentials when scanning.

Does anyone have experience using policy scanning with Ivant Workspace and/or Current User registry checks with InsightVM?

Jeroen