Manualshelf

Users Guide

ManualsBrandsDell ManualsAccess PlatformsW-ClearPass Virtual Appliances
231232233234235236237238239240
236 | Audit Servers Dell Networking W-ClearPass Policy Manager 6.3 |User Guide
Figure 220: Audit Servers Listing
2. Modify the profile, plugins, and/or preferences.
l In the Audit tab, you can modify the In Progress Posture Status and Default Posture Status.
l If you selected a NESSUS Server, then the Primary/Backup Server tabs allow you to specify a scan profile. In
addition, when you add a new scan profile, you can select plugins and preferences for the profile. Refer to
"Nessus Scan Profiles" on page 238 for more information.
The built-in Policy Manager Nessus Audit Server ships with approximately 1000 of the most commonly used
Nessus plugins. You can download others from http://www.tenablesecurity.com, in the form all-2.0.tar.gz. To
upload them to the built-in Policy Manager Audit Server, navigate to Administration > Server Manager >
Server Configuration, select Upload Nessus Plugins, and then select the downloaded file.
Figure 221: Upload Nessus Plugins Popup
l In the Rules tab, you can create post-audit rules for determining Role based on identity attributes discovered by
the audit. Refer to "Post-Audit Rules" on page 242.
Custom Audit Servers
For enterprises with existing audit server infrastructure, or otherwise preferring custom audit servers, Policy Manager
supports NESSUS (2.x and 3.x) (and NMAP scans using the NMAP plug-in on these external Nessus Servers).
To configure a custom Audit Server:
1. Open the Audit page.
l To configure an audit server for a new service (as part of the flow of the Add Service wizard), navigate to
Configuration > Posture > Audit Servers, then click Add Audit Server.
l To modify an existing audit server, navigate to Configuration > Posture > Audit Server, and select an audit
server.
2. Add a custom audit server
When you click Add Audit Server, Policy Manager displays the Add Audit Server page. Configuration settings
vary depending on audit server type:
n "Nessus Audit Server" on page 236
n "NMAP Audit Server" on page 240
Nessus Audit Server
Policy Manager uses the Nessus Audit Server interface primarily to perform vulnerability scanning. It returns a
Healthy/Quarantine result.
The Audit tab identifies the server and defines configuration details.