HPE Community
Server Management - Systems Insight Manager
1833451 Members
2969 Online
110052 Solutions
New Discussion

Re: Customizing scanning policies with Vulnerability & Patch Manager

 
Steve Kadish
Trusted Contributor

‎01-03-2005 06:33 AM

‎01-03-2005 06:33 AM

Customizing scanning policies with Vulnerability & Patch Manager

Hi all,

I am running my first scans with VPM. Some of the vulnerabilities it is flagging are less than entirely helpful, because while we might have addressed the issue already, we are not addressing it to the extent which Harris Stat would like to.

For instance, we have the Password History on our servers set to less than 10, and therefore it is flagged. In the "Solution" section of the report, it says that "Policy Options can be set on STAT Scanner by clicking on Edit | Options | Policy." I appears that if we had the full version of Harris STAT Scanner, we could set this policy to a lower number which matches our current in-house policy.

Is there any way to set such customizations in SIM? The "Customize Vulnerability Scan Definitions" only allows one to turn a vulnerability check on or off.

Thanks,
- Steve
0 Kudos
Reply
3 REPLIES 3
Rob Buxton
Honored Contributor

‎01-04-2005 12:45 PM

‎01-04-2005 12:45 PM

Re: Customizing scanning policies with Vulnerability & Patch Manager

I just wish I could get it to scan the two licensed Servers I have!
It seems a bit like PMP in that you can't really tune it that finely.
0 Kudos
Reply
Steve Kadish
Trusted Contributor

‎01-05-2005 02:21 AM

‎01-05-2005 02:21 AM

Re: Customizing scanning policies with Vulnerability & Patch Manager

Hi Rob,

Once I solved all my SSH issues, I still had trouble scanning initially because of the WBEM credentials. The VPM documentation says that if you have VPM installed on different server than SIM, you should use WBEM credentials of the form DOMAIN/user. However, I found that only when I used the local administrator account/password on the first line of WBEM credentials did I get a complete scan.

Good luck,
- Steve
0 Kudos
Reply
Rob Buxton
Honored Contributor

‎01-05-2005 06:55 AM

‎01-05-2005 06:55 AM

Re: Customizing scanning policies with Vulnerability & Patch Manager

Steve,
Yeah I read that but got confused.
I have HPSIM & VPM on the same Server. But the Server I want to scan is separate.

So, I just tried setting the WBEM credentials for the Remote (non HPSIM/VPM Server) to use a local admin account and it worked.

So, yep, it seems you cannot use Domain Credentials with WBEM and get VPM to work.
This strikes me as being somewhat flawed.
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.