Technical Tip: Clear scan failures for hosts marked 'At Risk'
Description
This article provides methods to mark 'At Risk' hosts as 'Safe'.
This may be required due to various circumstances:
- Hosts failed an improperly configured scan.
- A Host Record marked At-Risk is deleted. After recreation of the record, the host is still marked At-Risk. Deleting a Host Record from the database does not delete the host's scan results. Therefore, after deletion when the host record is recreated, it may be marked as At-Risk if scan failures are pending.
Scope
FortiNAC.
Solution
If a scan was incorrectly configured, modify the scan and save it. Otherwise, hosts will be isolated again upon the next scan. For details regarding scans and scan parameters, refer to the Administration Guide.
Mark the Individual Host Record as 'Safe' without re-running the scan(s).
Manually clear the scan failures:
- Navigate to Hosts -> Hosts View.
- 'Right-click' on the host record and select Host Health.
- Set the Status to Initial for each scan in the list.
 
Mark All Host Records as 'Safe'.
Clears all host records in the database currently marked 'At-Risk' (regardless of reason):
- Navigate to System -> Settings -> Control -> Quarantine.
- To Set all hosts 'Risk state' to 'Safe' and select Apply.
