However the only options available to me are to:
1. Reinstall the endpoint software
This seems a little over the top as the policy simply needs to be re-applied, additionally this would require manual interaction on my part or the end user.
2. Ignore the alert
Well at this stage, because I don't know WHY it is non-compliant I certainly don't want to ignore it
So the two options seem a little odd to me.
Instead could we not force a push of the policy out to the endpoint?
Next I disabled the policy applied to this machine and then re-enabled it. This forced the policy down to the endpoint again and all was resolved (MUCH simpler than re-installing the endpoint) and the alert was cleared from the dashboard. So the functionality to reapply the policy is there, can we not include this as an available action?
