Hp Insight Vulnerability and Patch Manager Software Manuel d'utilisateur Page 1

HP ProLiant Essentials Vulnerability and Patch Management Pack User Guide Part number 367562-004 Fourth edition July 2007

Introduction 10 The following figure depicts a shared server configuration, in which the VPM Acquisition Utility is used to obtain patch and vuln

Vulnerability and Patch Management Pack events 100 Patch and fix events Table 7 lists the events created by the Vulnerability and Patch Manageme

Vulnerability and Patch Management Pack events 101 Table 7 VPM patch and fix events Event Description Occurs Failed VPM Patch and Fix for a Sys

Vulnerability and Patch Management Pack events 102 Acquisition events Table 8 lists the events created by the Vulnerability and Patch Management

Vulnerability and Patch Management Pack events 103 Miscellaneous events Table 9 lists the miscellaneous events created by Vulnerability and Patc

Vulnerability and Patch Management Pack events 104 Table 9 Miscellaneous VPM events Event Description Occurs Failed VPM Patch Agent Install A f

HP services and technical support 105 HP services and technical support Vulnerability and Patch Management Pack is offered exclusively as a part

HP services and technical support 106 • Obtain the latest SmartStart (http://www.hp.com/servers/smartstart)—The SmartStart, Management, and Fir

Index 107 Index A acquisition patch, 37 settings, 37 adding licenses, 46 additional help resources, 6 applying licenses with License Manager, 47

Index 108 IIS. See Internet Information Services installation default location, 18 logs, 79 reinstalling, 87 uninstalling, 85 viewing status, 68

Index 109 scheduled task canceling, 51 modifying, 51 viewing, 51 security, 35 settings acquisition, 37 changing password, 96 default menu, 27 fir

Introduction 11 Distributed server configuration In a distributed server configuration, Vulnerability and Patch Management Pack and HP SIM are ea

Index 110 default settings, 18 events, 99 hardware requirements, 15 help resources, 6 infrastructure, 9 installation logs, 79 installing, 19 inte

Introduction 12 The following figure depicts a distributed server configuration, in which the VPM Acquisition Utility is used to obtain patch and

Introduction 13 The Vulnerability and Patch Management Pack interface Vulnerability and Patch Management Pack vulnerability information appears i

Introduction 14 Table 1 Vulnerability and Patch Management Pack icons Icon Status Risk assessment This system is available for licensing, but

Requirements 15 Requirements This section lists the hardware and software required for each component in the Vulnerability and Patch Management P

Requirements 16 Table 3 Software requirements Component Specification Microsoft Windows 2000 Server SP4 Windows 2000 Advanced Server SP4 Micros

Requirements 17 VPM Acquisition Utility (optional) The VPM Acquisition Utility can be installed on a system with Internet access to acquire patch

Installation and configuration 18 Installation and configuration This section provides detailed instructions to perform a first-time installatio

Installation and configuration 19 Installing from the Insight Control Management DVD 1. Insert the Insight Control Management DVD into the DVD-

Legal notices © Copyright 2004, 2007 Hewlett-Packard Development Company, L.P. Confidential computer software. Valid license from HP required for

Installation and configuration 20 4. At the welcome screen, click Install. 5. At the Software Selection screen, select Vulnerability and Patch

Installation and configuration 21 6. Review the requirements, and click Next.

Installation and configuration 22 7. If this is an upgrade installation, be sure that all Vulnerability and Patch Management Pack functions ar

Installation and configuration 23 9. If Vulnerability and Patch Management Pack is installed on a separate server from HP SIM, enter the user

Installation and configuration 24 10. Specify the database type to use for storing your patch database, and click Next. An existing SQL Server

Installation and configuration 25 11. Specify the installation directory or accept the default directory. NOTE: If this is an upgrade instal

Installation and configuration 26 14. Click Finished. The HP SIM service is restarted and Vulnerability and Patch Management Pack is available

Installation and configuration 27 Installing from the VPM download website 1. After downloading the Vulnerability and Patch Management Pack fro

Installation and configuration 28 − View by System − View Patches Installed by VPM ○ View Patch Reboot Status ○ View Patch Repository • De

Installation and configuration 29 Vulnerability and Patch Management Pack upgrades New versions of Vulnerability and Patch Management Pack are

Contents 3 Contents About this guide...

Installation and configuration 30 6. Click Next. 7. Specify the installation directory or accept the default directory, and click Next.

Installation and configuration 31 8. Specify the Start Menu folder or accept the default folder, and click Next. 9. Select whether to create a

Installation and configuration 32 10. Review the installation details. Click Back to change any settings, or click Install to begin the instal

Installation and configuration 33 11. When the installation is complete, select whether to launch the VPM Acquisition Utility, and click Finis

Installation and configuration 34 Post-installation configuration 1. Log in to HP SIM from an account with administrator privileges. NOTE: A

Installation and configuration 35 5. Perform an automatic discovery to locate and identify target systems in the network that can be used with

Installation and configuration 36 ○ If the VPM server does not have Internet access, select Acquire updates from local repository to use the V

Installation and configuration 37 Configuring Vulnerability and Patch Management Pack acquisition for Red Hat Enterprise Linux If Red Hat patch

Installation and configuration 38 Acquisitions from the VPM server IMPORTANT: If a proxy is used to connect to the Internet, proxy settings

Installation and configuration 39 4. Select the appropriate languages for the required patches, and click Schedule. 5. Schedule a suitable

Contents 4 Deleting scan results by system ...

Installation and configuration 40 Progress of the acquisition can be monitored at C:\Program Files\HP\VPM\Radia\IntegrationServer\ logs\patch-a

Installation and configuration 41 3. Select the appropriate operating system platforms and platform-related applications, and click Next. 4.

Installation and configuration 42 6. If you use a proxy, select the I use a proxy checkbox, and enter the appropriate configuration informatio

Installation and configuration 43 The vulnerability and patch acquisition begins. Progress of the acquisition can be monitored at C:\Program F

Installation and configuration 44 11. On the VPM server, create a directory named “data” at C:\Program Files\HP\VPM\Radia\Integration Server.

Licensing 45 Licensing This section provides information about licensing systems for use with Vulnerability and Patch Management Pack. NOTE: Th

Licensing 46 3. Click Next to continue the task. NOTE: Selected target systems not yet licensed or licensed using a time-limited license appe

Licensing 47 NOTE: Vulnerability and Patch Management Pack does not support the HP SIM License Manager Add Key from File feature. NOTE: If t

Licensing 48 5. Select the appropriate Vulnerability and Patch Management Pack license key to apply to the selected systems. 6. Click Run Now.

Vulnerability scanning 49 Vulnerability scanning This section provides an overview of setting up and using the Vulnerability and Patch Managemen

Contents 5 Other tools report that a Windows system is patched, but Vulnerability and Patch Management Pack reports patches needed...

Vulnerability scanning 50 4. Verify that the correct target systems appear in the lists, click Add Targets or Remove Targets if it is necessary

Vulnerability scanning 51 NOTE: Scans are run one system at a time in a serial process from the VPM server. 9. If scheduling the vulnerabili

Vulnerability scanning 52 3. Modify the event details. a. If necessary, change target systems on which the task is scheduled to run by click

Vulnerability scanning 53 Viewing vulnerability scan results The Vulnerability and Patch Management Pack scan results can be viewed either for

Vulnerability scanning 54 Viewing scan results by system 1. Select Diagnose>Vulnerability and Patch Management>Scan>View Results by S

Vulnerability scanning 55 4. Results for all scans performed on the selected system appear. Select the scan results to view, and click View.

Vulnerability scanning 56 3. Select one or more vulnerabilities to include in the custom scan definition. 4. Enter a name and description for

Vulnerability scanning 57 Deleting a customized vulnerability scan NOTE: Only custom vulnerability scans can be deleted. Default system scans

Vulnerability scanning 58 2. Select the appropriate scan or scans, and click Delete. All results associated with the selected scan are deleted.

Vulnerability scanning 59 4. Select the scan results to delete, and click Delete.

About this guide 6 About this guide This user guide provides step-by-step instructions for installing and using HP ProLiant Essentials Vulnerabi

Deploying patches and fixes 60 Deploying patches and fixes This section provides an overview of using Vulnerability and Patch Management Pack to

Deploying patches and fixes 61 To deploy patches, configuration fixes, or both to systems based on a specific vulnerability scan: 1. Select Dep

Deploying patches and fixes 62 4. Select the systems on which to apply patches or fixes, and click Next. 5. Designate when the patched systems

Deploying patches and fixes 63 8. View task results in the VPM Events list after the task completes. To view the list of target systems that r

Deploying patches and fixes 64 5. If any selected systems are unlicensed or licensed with a time-limited license, permanent licenses can be ap

Deploying patches and fixes 65 8. Designate when the patched systems should be rebooted. Reboots can be performed immediately after the patche

Deploying patches and fixes 66 a. Enter an appropriate name for the deployment task or accept the default name, and select Once. b. Designate

Deploying patches and fixes 67 4. Verify that the correct target systems appear in the lists, click Add Targets or Remove Targets, if necessa

Deploying patches and fixes 68 7. If scheduling the reboot task: a. Enter an appropriate name for the reboot task or accept the default name,

Deploying patches and fixes 69 Viewing patch installation status by search filter 1. Select Diagnose>Vulnerability and Patch Management>

Introduction 7 Introduction Malicious software security threats are becoming more frequent, more sophisticated, and more costly to businesses, dr

Deploying patches and fixes 70 Viewing patch installation status by system 1. Select Diagnose>Vulnerability and Patch Management>View Pa

Deploying patches and fixes 71 3. Verify that the correct target systems appear in the lists, click Add Targets or Remove Targets, if necessar

Deploying patches and fixes 72 Validating installed patches Patch validation identifies any missing patches on target systems and immediately r

Deploying patches and fixes 73 5. Enter an appropriate name for the validation task, or accept the default name. 6. To schedule the validatio

Deploying patches and fixes 74 NOTE: If the VPM Patch Agent deployment failed, be sure that the system is accessible by selecting Options>Pr

Deploying patches and fixes 75 IMPORTANT: Any unlicensed systems not licensed at this time will not be included in the VPM Patch Agent deploym

Deploying patches and fixes 76 9. View task results in the VPM Events list after the task completes. Removing patches Only patches that can be

Deploying patches and fixes 77 3. Select the systems on which to remove the designated patches. 4. To remove the patches immediately, click R

Deploying patches and fixes 78 5. If scheduling the patch removal task: a. Enter an appropriate name for the removal task or accept the default

Troubleshooting 79 Troubleshooting This section identifies and provides solutions for commonly encountered issues, as well as answers to frequent

Introduction 8 the need to recreate these tasks in multiple tools for vulnerability assessment and patch management. • Comprehensive vulnerabili

Troubleshooting 80 Vulnerability and Patch Management Pack installation updates MDAC and MSDE If MSDE or files used by MSDE are not up-to-date, f

Troubleshooting 81 4. Click the Log On tab, and update with the new password. 5. Click the General tab, and click Stop>Start to restart the H

Troubleshooting 82 • UDP 1433, 1434—MSDE Shared Instance Support • TCP (variable)—MSDE TCP/IP communications. This port, assigned at random by

Troubleshooting 83 Be sure that the DNS suffix for this connection field has the correct DNS suffix and that both the Register this connection’s

Troubleshooting 84 For information about backing up and restoring the ISS Metabase, see http://www.microsoft.com/technet/prodtechnol/WindowsServe

Troubleshooting 85 f. Clear the Require secure channel (SSL) option, and click OK>OK. Uninstalling Vulnerability and Patch Mana

Troubleshooting 86 IMPORTANT: Vulnerability and Patch Management Pack licenses are not removed from target systems when Vulnerability and Patch

Troubleshooting 87 Hiding the VPM column in the HP SIM console Vulnerability and Patch Management Pack uses the VPM column in the HP SIM console

Troubleshooting 88 Windows • The account used to scan the target system is a member of the Administrator group or Domain Administrator group for

Troubleshooting 89 Configure file permissions on all necessary DLLs. Configure Windows NT Registry permissions on the following: • HKEY_LOCAL_M

Introduction 9 Infrastructure A server environment using Vulnerability and Patch Management Pack consists of the following components: • Vulnera

Troubleshooting 90 A scan was submitted but never started All target systems scanned by Vulnerability and Patch Management Pack must have an IP a

Troubleshooting 91 To deploy the VPM Patch Agent to target systems, see the “Deploying the VPM Patch Agent” section. Be sure that the Red Hat li

Troubleshooting 92 This message occurs because the Microsoft information pertaining to the patch location is incorrect and the patch cannot be do

Troubleshooting 93 Other tools report that a Windows system is patched, but Vulnerability and Patch Management Pack reports patches needed Many o

Troubleshooting 94 HP SIM integration Vulnerability and Patch Management Pack menus do not appear in the HP SIM console after installation The to

Vulnerability and Patch Management Pack provided scan definitions 95 Vulnerability and Patch Management Pack provided scan definitions The follo

Using the Change VPM Credentials Utility 96 Using the Change VPM Credentials Utility The Change VPM Credentials Utility can be used to update Vu

Using the Change VPM Credentials Utility 97 4. If changing database credentials, enter your current database credentials, and click Change.

Backing up and restoring Vulnerability and Patch Management Pack 98 Backing up and restoring Vulnerability and Patch Management Pack Introductio

Vulnerability and Patch Management Pack events 99 Vulnerability and Patch Management Pack events Vulnerability and Patch Management Pack creates