Manualshelf

ProLiant Essentials Vulnerability and Patch Management Pack Planning Guide

ManualsBrandsHP ManualsSoftwareHP Vulnerability and Patch Management 10 Server License
10111213141516171819
Installing the Vulnerability and Patch Management Pack
Installation tips
Because of the lack of throughput, HP recommends not installing the Vulnerability and Patch
Management Pack on a virtual machine guest.
Exercise care when installing the Vulnerability and Patch Management Pack components on systems
with other large management applications, such as:
Microsoft Operations Manager (MOM)
Computer Associates (CA) Unicenter
Tivoli TME
Exercise care when installing the Vulnerability and Patch Management Pack with other applications
that use IIS.
HP recommends not installing the Vulnerability and Patch Management Pack on Active Directory
servers, domain servers, or DNS servers.
Network configuration must allow bi-directional access between the VPM server and target systems.
The Vulnerability and Patch Management Pack relies heavily on a correctly configured network
infrastructure, including unique names and addresses and valid routes.
Installing the VPM Acquisition Utility (optional)
The VPM Acquisition Utility is used to download updates and patches from a separate system that can
reach operating system vendor websites and acquire patches from the Internet. This utility can be used
when the VPM server does not have direct access to the Internet.
To install and configure the VPM Acquisition Utility, see the “Installation and configuration” chapter in
the user guide.
Configuring the Vulnerability and Patch Management Pack
Acquiring patch updates
The Vulnerability and Patch Management Pack provides an acquisition utility that connects to the
selected vendor website, downloads patch information and patch files, and places this information in
the Vulnerability and Patch Management Pack database. Acquisitions can be run either from the VPM
server in situations when the VPM server has direct access to the Internet or using the VPM Acquisition
Utility installed on another system.
The VPM Acquisition Utility can be installed on any system with Internet access to acquire vulnerability
and patch updates. No other Vulnerability and Patch Management Pack components or database
software is required to be installed on the system to download vulnerability and patch updates. To
install and configure the VPM Acquisition Utility, see the “Installation and configuration” chapter in the
user guide.
After the Vulnerability and Patch Management Pack is installed for the first time, complete a patch
acquisition to update the information in the Vulnerability and Patch Management Pack database.
Also, perform patch acquisitions on a regular basis to obtain new vulnerability scan definitions and
patches, ensuring that the Vulnerability and Patch Management Pack is always up to date with the
latest security information.
15