So what I have found that works for me is taking the inverse approach.
Setting a policy using a Search for:
Does not have: "ip http server enabled"
And the violators list includes all those that do have the string. I get to the result but it would be nice to simply look for a string and get the resultant "finds" instead of using a double negative.