https://community.hpe.com/t5/server-management-systems/customizing-scanning-policies-with-vulnerability-amp-patch/m-p/3454215#M8593 Hi Rob,<BR /><BR />Once I solved all my SSH issues, I still had trouble scanning initially because of the WBEM credentials. The VPM documentation says that if you have VPM installed on different server than SIM, you should use WBEM credentials of the form DOMAIN/user. However, I found that only when I used the local administrator account/password on the first line of WBEM credentials did I get a complete scan.<BR /><BR />Good luck,<BR />- Steve<BR /> Wed, 05 Jan 2005 10:21:21 GMT Steve Kadish 2005-01-05T10:21:21Z https://community.hpe.com/t5/server-management-systems/customizing-scanning-policies-with-vulnerability-amp-patch/m-p/3454213#M8591 Hi all,<BR /><BR />I am running my first scans with VPM. Some of the vulnerabilities it is flagging are less than entirely helpful, because while we might have addressed the issue already, we are not addressing it to the extent which Harris Stat would like to.<BR /><BR />For instance, we have the Password History on our servers set to less than 10, and therefore it is flagged. In the "Solution" section of the report, it says that "Policy Options can be set on STAT Scanner by clicking on Edit | Options | Policy." I appears that if we had the full version of Harris STAT Scanner, we could set this policy to a lower number which matches our current in-house policy.<BR /><BR />Is there any way to set such customizations in SIM? The "Customize Vulnerability Scan Definitions" only allows one to turn a vulnerability check on or off.<BR /><BR />Thanks,<BR />- Steve<BR /> Mon, 03 Jan 2005 14:33:58 GMT https://community.hpe.com/t5/server-management-systems/customizing-scanning-policies-with-vulnerability-amp-patch/m-p/3454213#M8591 Steve Kadish 2005-01-03T14:33:58Z https://community.hpe.com/t5/server-management-systems/customizing-scanning-policies-with-vulnerability-amp-patch/m-p/3454214#M8592 I just wish I could get it to scan the two licensed Servers I have! <BR />It seems a bit like PMP in that you can't really tune it that finely. Tue, 04 Jan 2005 20:45:56 GMT https://community.hpe.com/t5/server-management-systems/customizing-scanning-policies-with-vulnerability-amp-patch/m-p/3454214#M8592 Rob Buxton 2005-01-04T20:45:56Z https://community.hpe.com/t5/server-management-systems/customizing-scanning-policies-with-vulnerability-amp-patch/m-p/3454215#M8593 Hi Rob,<BR /><BR />Once I solved all my SSH issues, I still had trouble scanning initially because of the WBEM credentials. The VPM documentation says that if you have VPM installed on different server than SIM, you should use WBEM credentials of the form DOMAIN/user. However, I found that only when I used the local administrator account/password on the first line of WBEM credentials did I get a complete scan.<BR /><BR />Good luck,<BR />- Steve<BR /> Wed, 05 Jan 2005 10:21:21 GMT https://community.hpe.com/t5/server-management-systems/customizing-scanning-policies-with-vulnerability-amp-patch/m-p/3454215#M8593 Steve Kadish 2005-01-05T10:21:21Z https://community.hpe.com/t5/server-management-systems/customizing-scanning-policies-with-vulnerability-amp-patch/m-p/3454216#M8594 Steve,<BR />Yeah I read that but got confused.<BR />I have HPSIM &amp; VPM on the same Server. But the Server I want to scan is separate.<BR /><BR />So, I just tried setting the WBEM credentials for the Remote (non HPSIM/VPM Server) to use a local admin account and it worked.<BR /><BR />So, yep, it seems you cannot use Domain Credentials with WBEM and get VPM to work.<BR />This strikes me as being somewhat flawed. Wed, 05 Jan 2005 14:55:50 GMT https://community.hpe.com/t5/server-management-systems/customizing-scanning-policies-with-vulnerability-amp-patch/m-p/3454216#M8594 Rob Buxton 2005-01-05T14:55:50Z