Update Settings policy
Use the Update Settings policy on the SiteProtector Console to configure how the agent automatically locates, downloads, and installs available updates.
Asset policies for Enterprise Scanner
Asset policies apply to groups of assets and describe the security policy for those assets.
Asset policy descriptions for Enterprise Scanner
Asset policies apply to both discovery scans and assessment scans depending on the policy.
Scope of scanning
The following table identifies which asset policies apply to discovery scans, which apply to assessment scans, and which apply to both:
Table 6. Asset policies
Policy | Discovery | Assessment |
|
|
|
Assessment | No | Yes |
|
|
|
Assessment Credentials | Yes | Yes |
|
|
|
Discovery | Yes | No |
|
|
|
Network Locations | Yes | Yes |
|
|
|
Network Services | No | Yes |
|
|
|
Scan Control | Yes | Yes |
|
|
|
Scan Exclusion | No | Yes |
|
|
|
Scan Window | Yes | Yes |
|
|
|
Contents of an asset policy
The general contents of an asset policy include:
vInformation about how to run discovery scans, assessment scans, or both types of scans against the group
vThe IP addresses to scan for discovery scans
vThe checks to run, and other assessment parameters (for assessment scans
vThe days to run scans and during which hours to run them
vRefreshed information from scans about the assets in a group
vThe assets in the group, if any, that you do not want to scan
vThe list of accounts and log on credentials to use for assets in a group
vThe service names associated with TCP and UDP ports
Policy inheritance with asset policies
The following rules describe policy inheritance for agent policies:
vYou can define only one Network Locations policy, to be used for all agents and assets, at the Site level in your group structure.
