Phone Lines icon GFI Support Home Start a conversation Sign in
Start a conversation
  1. GFI LanGuard
  2. GFI LanGuard - Scanning Profile Editor
  3. Articles

Configuring Patches Scanning Options with Scanning Profile Editor

Overview

The Scanning Profile Vulnerability Assessment Options tab Patches section allows you to specify the security updates checked during vulnerability scanning. For example, you can skip some patches from being detected by scanning with the customized Scanning Profile instead of acknowledging or ignoring them after the scan.

 

Solution

The patches checked are selected from the complete list of supported Microsoft and non-Microsoft software updates and patches contained in the LanGuard Patch Management Database. This list is updated automatically along with the Program Updates.

Enabling and Disabling Missing Patch Detection Checks

  1. Launch the LanGuard console and go to Configuration > Scanning Profile Editor. Alternatively, press CTRL + P to launch the Scanning Profiles Editor.
  2. Go to Vulnerability Assessment Options > Patches.
  3. Select the scanning profile that you wish to customize from the left pane under Profiles.
  4. In the right pane, select the Detect Installed and Missing Service Packs/Patches option. 

    configuringpatches-ui.png

Missing patch scanning parameters are configurable on a Scanning Profile level. Make sure to enable missing patch scanning in all profiles where missing patch scanning is required.

Customizing the List of Software Patches to Scan 

To specify which missing security updates will be enumerated and processed by a scanning profile:

  1. Go to Vulnerability Assessment Options > Patches.
  2. Select the scanning profile to customize from the left pane under Profiles.
  3. In the right pane, select/unselect which missing patches this scanning profile enumerates.

    mceclip0.png

    For example, choose to group the selection by target software, right-click in the field displaying the available patches, choose "select all" and then subsequently "do not include in security patches update".

  4. (Optional) Click Advanced in the Patches tab to edit the advanced update scanning options.

    mceclip0.png

 

Searching for Bulletin Information

  1. Go to Vulnerability Assessment Options > Patches > Find update.
  2. Specify the bulletin name or QNumber in the search tool entry box included at the right pane's bottom.

    mceclip1.png

    Example:
    Bulleting Name: MS02–017
    QNumber: Q311987
  3. Click Find to search for your entry.

    mceclip2.png

 

Related Articles

 

Choose files or drag and drop files
Was this article helpful?
Yes
No

  1. Priyanka Bhotika

  2. Posted
  3. Updated

Comments