Reassessing 105 Rules Sources | IBM Partner Pavilion 2.3 instruction

Enterprise Scanner report

viewing in SiteProtector Console 119 Enterprise Scanner reports

running in SiteProtector 117 Enterprise Scanner scan module 161 Enterprise Scanner scheduler

module 162 ES logs 122, 124

changing detail 124 ESM blade log 124 ETH0 40

ETH1 40

event notification 38 configuring 38

Event Notification tab 153 explicit-trust 150, 152

filename_eventdata.csv 128 filename_eventinfo.csv 128 filename_eventresp.csv 128 fingerprinting 12 fingerprinting (SiteProtector) 51 firmware update 148

install 154

one-time firmware update 154 schedule 154

Full Backup tab 146 full system backups 146

get log file 126 getFullLogs 126 getLogs 126

Global perspective (SiteProtector) 68

Half-Scan Connections 65 Home page 158

HTML reports

generate from LMI 24 HTTP proxy 153

configuring 153

IBM Internet Security Systems

technical support			viii
Web site	viii
IBM ISS Download Center				148, 151
IBM license agreement			viii
Interface Log	124
IP range 8, 47, 64
iss-esm process		161
iss-esm.log 124
iss-esmScheduler process				162
iss-esmScheduler-stdout.log 123
iss-esmScheduler.log			124
iss-esmSchedWatch.log 123
iss-esmWatch.log		123

178Enterprise Scanner: User Guide

LMI Scan Control page 22 Locally Managed Agents node 32 Log File Management page 126 log status 124

Log Status page 124 logs 122

Management Interface tab 4, 40
management task	72
manually download		156
manually install	156
migrating local agents		32

NAT rules 4, 40

Network Interface Configuration page 4,

5, 6
network interface status			158
network interfaces	40
changing settings		40
network location	36
Network Locations page			7
Network Locations policy			35, 36, 37, 45
Network Locations tab		36
network services	18, 63
Network Services policy			62, 63
Network Services policy
(SiteProtector) 88
network time protocol (NTP)				44
Networking policy	35, 40, 41, 42
Notification policy	35, 38
NTP (Network Time Protocol)				44

one-time update		149
operational status		158
OS fingerprinting		8, 12
OS fingerprinting (SiteProtector)			47, 51
OS identification		12, 46, 104, 105
certainty 104
exceptions	105
reassessing	105
rules 105
sources of	104
user-supplied		105
OS identification (SiteProtector)			51
OSID 104, 105
See OS identification

packet capturing 65 password guessing checks 12 password guessing checks

(SiteProtector) 51 passwords 39

changing 39

Pause scan icon 23 perspective 5, 41, 57 assigning 7, 37

perspective (continued)
configuring routes for					7, 37
default 36
defining		36
defining routes			36
Network Locations tab					7, 37
selecting for a scan				22
perspective (SiteProtector)					68
adding for an agent				69
in policies		69
network locations				69
user-defined 85
perspectives, assigning				58
policy inheritance			99
Policy Management page					8, 10, 12, 16,
18, 20
port ranges		12
port ranges (SiteProtector)					51
portlets	106
preface	vii
protection status			158
Proventia Manager Home page 158
Proxy Server page			153
purging scan data			25

remediation 135 remediation tasks 136 Remedy 134 Report view 119 restore 144 Resume scan icon 23 rollbacks 149

root password 39 Routes tab 7, 37 routing 7, 37 routing mode 40

running Enterprise Scanner reports 117

safety notices	165
scan
excluding assets from				19, 61, 87
excluding hosts from				19, 61, 87
excluding ports from				19, 61, 87
range of IPs		8
viewing results			24
without full permissions 36
scan (SiteProtector)
allowed	86
initiating	98
range of IPs		47
Scan Control policy			45, 57, 58
Scan Control policy (SiteProtector)					84
scan cycle duration			76
Scan Exclusion policy 19, 45, 61
Scan Exclusion policy (SiteProtector)					87
Scan Interface tab			5, 41
scan job 72
canceling	96
finding 92
pausing	96
rerunning	96
restarting	96

IBM Partner Pavilion 2.3 manual Reassessing 105 Rules Sources

Models: 2.3

178Enterprise Scanner: User Guide

reassessing

105

rules 105

sources of