McAfee TSA00M005PAA Processor Guide - Page 128

Configuring devices to accept scans, Creating device groups

Get McAfee TSA00M005PAA - Total Protection Service PDF manuals and user guides
UPC - 731944556253
View all McAfee TSA00M005PAA manuals
Add to My Manuals
Save this manual to your list of manuals

Page 128 highlights

Using the SaaS Vulnerability Scanning Service Managing scan devices 8 Click Continue, select both acknowledgment checkboxes, then click Add Device. 9 In the Scan Approval list, select the IP addresses or domain names for which you want to approve scans, select both checkboxes under Terms of Service, enter the characters displayed in the Verification area, then click Activate. If you selected OnDemand in step 7, no scan is performed for the devices you have just added until you initiate one. If you selected a different option, McAfee begins a scan within 24 hours and notifies you by email when it is complete. Configuring devices to accept scans Use this task to configure devices to accept communications from the IP addresses where vulnerability scans originate. This enables scans to be performed on devices that are protected by intrusion prevention methods such as a hardware or software firewall. NOTE: If you receive an incomplete scan error message, the mostly likely cause is that the IP address originating the scan was blocked. Use this procedure to resolve the error, or talk to your IT administrator. Task 1 Obtain the list of IP addresses from one of these sources: • C heck the most current listing at https://www.mcafeesecure.com/help/ScanIps.sa (accessible from the SaaS vulnerability scanning portal). • S ign up for the RSS feed at http://www.mcafeesecure.com/help/ScanIps.rss. 2 Follow the instructions provided in the documentation for your intrusion prevention method, or give this list to your IT administrator. Creating device groups Optionally, use this task to create groups and add devices to a group. If your account contains a lot of devices, you can organize them into groups to manage them more easily. Assign devices to groups based on type, business function, geographic location, or any criteria that is meaningful to you. Groups can be used to drive audit schedules, alerting, remediation activities, and reporting. NOTE: To place all devices that meet specific criteria into a group, click the Use Wizard button at the bottom of the Add Device Group page. Task 1 Open the SaaS vulnerability scanning portal (click the link in the SaaS Vulnerability Scanning/PCI Certification widget on the Dashboard page of the SecurityCenter). 2 In the portal, click the Security tab to display the Security Dashboard page. 3 Under Audits, select Devices. 4 On the Devices page, select the checkbox next to one or more device names, then at the bottom of the page, in the Perform on Checked drop-down list, select Add To New Group. 5 On the Device Groups page, click Add Group. McAfee Total Protection Service Product Guide 128

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
  • 121
  • 122
  • 123
  • 124
  • 125
  • 126
  • 127
  • 128
  • 129
  • 130
  • 131
  • 132
  • 133
  • 134
McAfee Total Protection Service Product Guide
128
8
Click
Continue
, select both acknowledgment checkboxes, then click
Add Device
.
9
In the Scan Approval list, select the IP addresses or domain names for which you want
to approve scans, select both checkboxes under Terms of Service, enter the characters
displayed in the Verification area, then click
Activate
.
If you selected
OnDemand
in step 7, no scan is performed for the devices you have just
added until you initiate one. If you selected a different option, McAfee begins a scan within
24 hours and notifies you by email when it is complete.
Configuring devices to accept scans
Use this task to configure devices to accept communications from the IP addresses where
vulnerability scans originate.
This enables scans to be performed on devices that are protected by intrusion prevention
methods such as a hardware or software firewall.
NOTE:
If you receive an incomplete scan error message, the mostly likely cause is that the IP
address originating the scan was blocked. Use this procedure to resolve the error, or talk to
your IT administrator.
Task
1
Obtain the list of IP addresses from one of these sources:
Check the most current listing at https://www.mcafeesecure.com/help/ScanIps.sa
(accessible from the SaaS vulnerability scanning portal).
2
Follow the instructions provided in the documentation for your intrusion prevention
method, or give this list to your IT administrator.
Creating device groups
Optionally, use this task to create groups and add devices to a group.
If your account contains a lot of devices, you can organize them into groups to manage them
more easily. Assign devices to groups based on type, business function, geographic location,
or any criteria that is meaningful to you. Groups can be used to drive audit schedules, alerting,
remediation activities, and reporting.
NOTE:
To place all devices that meet specific criteria into a group, click the
Use Wizard
button at the bottom of the Add Device Group page.
Task
1
Open the SaaS vulnerability scanning portal (click the link in the SaaS Vulnerability
Scanning/PCI Certification widget on the Dashboard page of the SecurityCenter).
2
In the portal, click the
Security
tab to display the Security Dashboard page.
3
Under Audits, select
Devices
.
4
On the Devices page, select the checkbox next to one or more device names, then
at the bottom of the page, in the Perform on Checked drop-down list, select
Add To
New Group
.
5
On the Device Groups page, click
Add Group
.
Using the SaaS Vulnerability Scanning Service
Managing scan devices