Users Guide
252 | Audit Servers Dell Networking W-ClearPass Policy Manager 6.4 |User Guide
Figure 230: Audit Servers Listing
2. Modify the profile, plugins, and/or preferences.
l In the Audit tab, you can modify the In Progress Posture Status and Default Posture Status.
l If you selected a NESSUS Server, then the Primary/Backup Server tabs allow you to specify a scan
profile. In addition, when you add a new scan profile, you can select plugins and preferences for the
profile. Refer to Nessus Scan Profiles on page 254 for more information.
The built-in Policy Manager Nessus Audit Server ships with approximately 1000 of the most commonly
used Nessus plugins. You can download others from http://www.tenablesecurity.com, in the form all-
2.0.tar.gz. To upload them to the built-in Policy Manager Audit Server, navigate to Administration >
Server Manager > Server Configuration, select Upload Nessus Plugins, and then select the
downloaded file.
Figure 231: Upload Nessus Plugins Popup
l In the Rules tab, you can create post-audit rules for determining Role based on identity attributes
discovered by the audit. Refer to Post-Audit Rules on page 260.
Custom Audit Servers
For enterprises with existing audit server infrastructure, or otherwise preferring custom audit servers, Policy
Manager supports NESSUS (2.x and 3.x) (and NMAP scans using the NMAP plug-in on these external Nessus
Servers).
To configure a custom Audit Server:
1. Open the Audit page.
l To configure an audit server for a new service (as part of the flow of the Add Service wizard), navigate to
Configuration > Posture > Audit Servers, then click Add Audit Server.
l To modify an existing audit server, navigate to Configuration > Posture > Audit Server, and select an
audit server.
2. Add a custom audit server
When you click Add Audit Server, Policy Manager displays the Add Audit Server page. Configuration
settings vary depending on audit server type:
n Nessus Audit Server on page 253
n NMAP Audit Server on page 258