McAfee Vulnerability Manager 7.5.1



Similar documents
McAfee Vulnerability Manager 7.0.2

Detecting rogue systems

Idera SQL Diagnostic Manager Management Pack Guide for System Center Operations Manager. Install Guide. Idera Inc., Published: April 2013

McAfee Public Cloud Server Security Suite

Integration Guide. McAfee Asset Manager. for use with epolicy Orchestrator 4.6

Performance Optimizer Software

Policy Compliance. Getting Started Guide. January 22, 2016

Product Guide. McAfee Vulnerability Manager 7.5

Integrating LANGuardian with Active Directory

Mobile device management

Upgrade Guide. McAfee Vulnerability Manager Microsoft Windows Server 2008 R2

Data Center Connector for vsphere 3.0.0

McAfee Enterprise Mobility Management 11.0 Software

Discovery Guide. Secret Server. Table of Contents

Data Center Connector for OpenStack

McAfee Web Gateway 7.4.1

McAfee Host Intrusion Prevention Patch 6 Software

Using WhatsUp IP Address Manager 1.0

System Area Management Software Tool Tip: Integrating into NetIQ AppManager

Enterprise Mobility Management Migration Migrating from Legacy EMM to an epo Managed EMM Environment. Paul Luetje Enterprise Solutions Architect

Release Notes for McAfee epolicy Orchestrator 4.5

McAfee Enterprise Security Manager 9.3.2

Virtualization Guide. McAfee Vulnerability Manager Virtualization

Review: McAfee Vulnerability Manager

Advanced Configuration Steps

ACTIVE DIRECTORY DEPLOYMENT

WhatsVirtual for WhatsUp Gold v16.0 User Guide

McAfee VirusScan Enterprise for Linux Software

Using Device Discovery

BlackBerry Enterprise Service 10. Universal Device Service Version: Administration Guide

SQL Server Setup for Assistant/Pro applications Compliance Information Systems

NetIQ. How to guides: AppManager v7.04 Initial Setup for a trial. Haf Saba Attachmate NetIQ. Prepared by. Haf Saba. Senior Technical Consultant

McAfee Database Activity Monitoring 5.0.0

Juniper Secure Analytics Release Notes

Use the below instructions to configure your wireless settings to connect to the secure wireless network using Microsoft Windows Vista/7.

EVENT LOG MANAGEMENT...

Release Notes for Websense Security v7.2

IBM Security QRadar Vulnerability Manager Version User Guide IBM

Citrix EdgeSight Administrator s Guide. Citrix EdgeSight for Endpoints 5.3 Citrix EdgeSight for XenApp 5.3

Acunetix Web Vulnerability Scanner. Getting Started. By Acunetix Ltd.

Windows XP Home Network Setup: Step-by-Step

Tool Tip. SyAM Management Utilities and Non-Admin Domain Users

Sophos Mobile Control Administrator guide. Product version: 3

Installation Guide. Live Maps 7.4 for System Center 2012

WhatsUpGold. v3.0. WhatsConnected User Guide

POC Installation Guide for McAfee EEFF v4.1.x using McAfee epo 4.6. New Deployments Only Windows Deployment

ProactiveWatch 2.0 Patch Management and Reporting

User Guide. Version 3.2. Copyright Snow Software AB. All rights reserved.

McAfee VirusScan and epolicy Orchestrator Administration Course

Windows Server 2012 Server Manager

Cloud Services MDM. Management Admin Guide

Audit Management Reference

CentreWare for Microsoft Operations Manager. User Guide

EM L09 Simplify IT with Creative Ways to Leverage Dashboards, Reports and Workflows Hands-On Lab

Table of Contents. Introduction...9. Installation Program Tour The Program Components...10 Main Program Features...11

About Help Desk. McAfee Help Desk 2.0 Software. Product Guide. Functions of McAfee Help Desk software. Quarantine release.

McAfee Policy Auditor 6.0 software Product Guide for epolicy Orchestrator 4.6

McAfee Certified Product Specialist McAfee epolicy Orchestrator

eeye Digital Security Product Training

Release Notes McAfee Risk Advisor Software For use with epolicy Orchestrator and Software

OLAP Cube Manual deployment and Error resolution with limited licenses and Config keys

Installing the ASP.NET VETtrak APIs onto IIS 5 or 6

StarWind SMI-S Agent: Storage Provider for SCVMM April 2012

How To Use Syntheticys User Management On A Pc Or Mac Or Macbook Powerbook (For Mac) On A Computer Or Mac (For Pc Or Pc) On Your Computer Or Ipa (For Ipa) On An Pc Or Ipad

Configuring Network Load Balancing with Cerberus FTP Server

McAfee Data Loss Prevention Endpoint

CounterACT Plugin Configuration Guide for ForeScout Mobile Integration Module MaaS360 Version ForeScout Mobile

Exchange 2010 PKI Configuration Guide

McAfee Threat Intelligence Exchange Software

How To Encrypt Files And Folders With A Password Protected By A Password Encrypted By A Safesafe (Mafee) (Eeff) 4

Installing and Configuring Login PI

Configuration Guide. BES12 Cloud

LogMeIn Network Console Version 8 Getting Started Guide

When your users take devices outside the corporate environment, these web security policies and defenses within your network no longer work.

IBM Security QRadar Vulnerability Manager Version User Guide

IBM Emptoris Contract Management. Release Notes. Version GI

Kaseya Server Instal ation User Guide June 6, 2008

Dell Enterprise Reporter 2.5. Configuration Manager User Guide

Live Maps. for System Center Operations Manager 2007 R2 v Installation Guide

Managing Identities and Admin Access

Best Practices. Understanding BeyondTrust Patch Management

StarWind iscsi SAN & NAS: Configuring HA Shared Storage for Scale- Out File Servers in Windows Server 2012 January 2013

Managing Qualys Scanners

Configuring Devices for Use with Cisco Configuration Professional (CCP) 2.5

Integrating Cisco ISE with GO!Enterprise MDM Quick Start

Kaseya 2. User Guide. Version R8. English

Sophos Enterprise Console Help

Novell File Reporter 2.5 Who Has What?

Video Administration Backup and Restore Procedures

LDAP Implementation AP561x KVM Switches. All content in this presentation is protected 2008 American Power Conversion Corporation

SourceAnywhere Service Configurator can be launched from Start -> All Programs -> Dynamsoft SourceAnywhere Server.

Diagnostic Manager. User Guide. Publication Date: September 04, 2015

How to speed up IDENTIKEY DNS lookup of the Windows Logon DAWL client on Windows 7?

How to Obtain an OPC License--5. Creating a System Code 5 Entering an Authorization Code 6. Getting Started with SNMP Editor--7

NETWRIX EVENT LOG MANAGER

AWS Account Management Guidance

McAfee Cloud Identity Manager

Getting Started with the iscan Online Data Breach Risk Intelligence Platform

Sophos Enterprise Console Help. Product version: 5.1 Document date: June 2012

Transcription:

McAfee Vulnerability Manager 7.5.1 The McAfee Vulnerability Manager 7.5.1 quarterly release adds features to the product without having to wait for the next major release. This release notes file contains information about new features for this release. New features Here is a list of new and updated features included with this release of McAfee Vulnerability Manager 7.5.1. RealTime scanning McAfee integrates McAfee Vulnerability Manager and McAfee Asset Manager to provide RealTime scanning. Operating system (OS) identification The product allows you to set the operating system for a single asset or a group of assets. You can also clear the operating system assigned to a single asset or group of assets. McAfee product integration McAfee Vulnerability Manager can now use information from other products, like McAfee Asset Manager. McAfee Asset Manager can provide operating system information for an asset. Vulnerability information for mobile platforms The product can provide vulnerability information for some mobile devices (requires McAfee Asset Manager integration). epolicy Orchestrator assets in the assets table epo assets are now added to the McAfee Vulnerability Manager asset table, so epo assets can be added from the Targets tab. Microsoft Windows 8 and Microsoft Windows Server 2012 The product allows you to scan assets running Microsoft Windows 8 or Microsoft Windows Server 2012. Note: Installing McAfee Vulnerability Manager on a Microsoft Windows Server 2012 system is not supported. Using McAfee Vulnerability Manager with Microsoft Internet Explorer 10 (IE10) is not supported.

RealTime scanning McAfee Vulnerability Manager RealTime scanning allows you to continuously scan assets on your network. You can have only one RealTime scan assigned to a scan engine. Before you start Before you can use a RealTime scan: Install the McAfee Asset Manager Sensors. Install the McAfee Asset Manager Console. Configure the McAfee Asset Manager Sensors to communicate with the McAfee Asset Manager Console. Install and configure McAfee Vulnerability Manager. Use the McAfee Asset Manager Integration Guide to integrate McAfee Asset Manager and McAfee Vulnerability Manager. Create a RealTime scan To create a RealTime scan, create a scan configuration and select the RealTime Scan checkbox. 1 Select Scans New Scan. 2 Select the base settings for your scan or select a template. 3 Select RealTime Scan, then click Next. 4 Type a name for the scan, select your target settings, then click Next. You cannot add targets to a RealTime scan, because the assets are imported from McAfee Asset Manager. 5 Select your scan settings, then click Next. 6 Select your report options, then click Next. No reporting options are enabled, by default. 7 Select your schedule options. This includes selecting a scan engine and the amount of time delayed between continuous scans. a Select Engine Select the scan engine to run the RealTime scan. Only one RealTime is allowed per scan engine. Scan engines with an active RealTime scan are removed from the Select Engine list. You must select Active to enable the Select Engine list. b Delay between scans Set the amount of time between when a RealTime scan completes and when it starts again. By default, this is five minutes. The shortest time delay is one minute, the longest is 1,440 minutes (24 hours). 8 Click Schedule Scan. If you selected Inactive, then click Save. 2

Use a RealTime scan Note the following about RealTime scanning: By default, a RealTime scan is set to continuous. After a RealTime scan completes, the scan goes into the Pending state until the next scheduled scan (five minutes by default). Change the time between continuous scans on the Schedule page in the product. If you cancel a Pending RealTime scan, the scan engine is no longer associated with that scan. You can then create another RealTime scan associated with the scan engine and activate it. If you attempt to run two RealTime scans on the same scan engine, for one root organization, you will see an error message stating this is not possible. RealTime conditions The dynamic asset tag and custom report filters now provide a way of identifying assets based on RealTime scanning conditions. Use the RealTime conditions in your dynamic asset tags to help you search for assets that are within your RealTime requirements or not within your RealTime requirements. Use the RealTime conditions in your custom reports to report on which assets are within your RealTime requirements or not within your RealTime requirements. RealTime conditions Condition Description Created date Last scanned date Matches an asset if the asset's creation date is less than or greater than the set number of days. Matches an asset if the asset was last scanned in less than or greater than the set number of days. Real time discovered Matches an asset if the asset was discovered or not discovered by McAfee Asset Manager. Real time scanned Matches an asset if the asset was scanned or not scanned in a RealTime scan. 3

Operating system identification The product allows you to manually set the operating system identified on an asset. Set OS identification using asset management You can set the operating system for an asset on the Asset Management page. 1 Select Manage Assets. 2 Right-click an asset, then select Properties. You can select multiple assets using the Ctrl or Shift buttons. 3 Select Change Operating System. 4 Type the operating system in the Operating System Name field. 5 Select the Operating System Category, then click Submit. Clear OS identification using asset management You can clear the operating system 1 Select Manage Assets. 2 Right-click an asset, then select Properties. You can select multiple assets using the Ctrl or Shift buttons. 3 Select Change Operating System. 4 Select Unknown from the Operating System Category. A message states you are about to clear the operating system information. 5 Click OK, then click Submit. Set OS identification using asset search You can conduct a search on the Asset Management page and then manually apply an operating system to the search results. 1 Select Manage Assets. 2 Conduct an asset search. 3 Click With all search results, then select Update Operating System. 4 Type the operating system in the Operating System Name field. 5 Select the Operating System Category, then click Submit. 4

Clear OS identification using asset search OS identification prioritization The product applies a priority based on the source of the operating system identification. If there is an external source (like epo or McAfee Asset Manager) with operating system information for an asset with a priority value greater than or equal to that of the information already in the product, the information from the external source replaces the information in the product. Determining which source to use for identifying the operating system on an asset happens during the asset reconciliation Operating system weight value (priority) Source Weight External source and only the operating system category is known McAfee Vulnerability Manager discovery scan without credentials External source and the complete operating system is known Unmanaged epo assets epo operating system information McAfee Vulnerability Manager discovery scan with credentials Manually set operating system 0 Note: The OS category would be Microsoft Windows, not Microsoft Windows Server 2008 R2. 0-100 Note: Some operating systems allow access to a target registry without using credentials, like a NULL session. In these cases, a score of 200 is applied to the target. 95 95 150 200 1000 5

Integrate third party OS identification The product allows you to integrate other McAfee products, like McAfee Asset Manager, and use that asset information to improve the accuracy of your scan results. See the McAfee Asset Manager documentation for information about integrating with McAfee Vulnerability Manager. Vulnerability information for mobile devices With mobile device information from McAfee Asset Manager, McAfee Vulnerability Manager can add these mobile devices as assets to your asset table and Asset Management page. When you run a scan that includes mobile devices, the product can provide you with a list of known vulnerabilities related to the software version running on the device. The product does not connect to the mobile device during a scan, but does run FSL scripts to identify vulnerabilities based on the mobile device information. Note: To run a scan against the mobile device information, the mobile device must be wirelessly connected to your network, and the wireless access point must be connected to a McAfee Asset Manager sensor. Mobile devices appear in the Asset Management page with the IP address and operating system. The DNS name (device name) and NetBIOS name appear if that information is available. Mobile devices appear in the asset table when adding assets to a scan. McAfee Vulnerability Manager can provide vulnerability information for the following mobile operating systems: Apple ios 1.0 and later Android OS 2.0 and later Blackberry OS 4.0 and later Windows Mobile OS 5.0 and later 6

epolicy Orchestrator assets in the asset tree Your epo assets are now included with the McAfee Vulnerability Manager assets and can be added to a scan configuration from the Targets tab. You can still add your epo assets by selecting the epo Asset Source on the Browse tab. Microsoft Windows 8 and Microsoft Windows Server 2012 The product can scan assets running Microsoft Windows 8 or Microsoft Windows Server 2012. Note: Installing McAfee Vulnerability Manager on a Microsoft Windows Server 2012 system is not supported. Using McAfee Vulnerability Manager with Microsoft Internet Explorer 10 (IE10) is not supported. Known issues For a list of known issues for this release, see the following KnowledgeBase article: KB76601 7

Resolved issues The following are the issues were resolved with this release. This application installs only the patch needed to update the McAfee Vulnerability Manager system. Fixed infinite loop in Discovery module during TCP/UDP fingerprinting. (Reference: 768854) Fixed form authentication using a credential that includes the character "ñ". (Reference: 779317) Fixed FSAssessment crash in the FASLModule. (Reference: 771899) Fixed date format specification for the FSUpdate table SQL query. (Reference: 788878) Fixed XCCDF Benchmark reports for STIG templates. (Reference: 756499) Fixed date conversion error while updating the job state on a British-English SQL Server. Fixed the MVM Data Import task invoked by the MVM epo extension. (Reference: 776590) Fixed the Vuln Set rule editor to hide the preview button until the editor has completed processing. (Reference: 761499) Fixed the workgroup-delete operation to display an error when the delete fails. (Reference: 766309) Fixed the role editor to allow the viewing of the complete organization tree. Fixed the FASL engine script launcher to avoid running too many scripts simultaneously against a single target. Fixed Dashboard Risk Trend Graph not Loading. (Reference: 795166) Fixed premature timeout determination made by the API and script monitoring object and improved its performance when running on networks with significant network latency. (Reference: 803904) 8

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information