Am I misinterpreting what resolved means in regards to the reports or are my rules set up incorrectly? My interpretation of a resolved vuln is one that has been identified as no longer existing on a host per Ticket state/status descriptions. I am just starting to mess around with policies so they are fairly simply:
1) Ignore all sev 1-2 vulns
2) Assign all patchable server related vulns to server team
3) Assign all patchable workstation related vulns to workstation team
As of right now the report yields both open and closed vulns but never any resolved.