TOC & Recently Viewed

Recently Viewed Topics

Patch Management

Nessus Manager can leverage credentials for the Red Hat Network Satellite, IBM TEM, Dell KACE 1000, WSUS, and SCCM patch management systems to perform patch auditing on systems for which credentials may not be available to the Nessus scanner.

Options for these patch management systems can be found under Credentials in their respective drop-down menus: Symantec Altiris, IBM Tivoli Endpoint Manager (BigFix), Red Hat Satellite Server, Microsoft SCCM, Dell KACE K1000, and Microsoft WSUS.

IT administrators are expected to manage the patch monitoring software and install any agents required by the patch management system on their systems.

Scanning With Multiple Patch Managers

If multiple sets of credentials are supplied to Nessus for patch management tools, Nessus will use all of them. Available credentials are:

  • Credentials supplied to directly authenticate to the target
  • Dell KACE 1000
  • IBM Tivoli Endpoint Manager
  • Microsoft System Center Configuration Manager (SCCM)
  • Microsoft Windows Server Update Services (WSUS)
  • Red Hat Network Satellite Server
  • Symantec Altiris

If credentials are provided for a host, as well as a patch management system, or multiple patch management systems, Nessus will compare the findings between all methods and report on conflicts or provide a satisfied finding. Using the Patch Management Windows Auditing Conflicts plugins, the patch data differences (conflicts) between the host and a patch management system will be highlighted.

Copyright © 2017. Tenable Network Security, Inc. All rights reserved. Tenable Network Security, Nessus, SecurityCenter Continuous View, Passive Vulnerability Scanner, and Log Correlation Engine are registered trademarks of Tenable Network Security, Inc. All other products or services are trademarks of their respective owners.