Configuring Posture Assessment Settings
Endpoint Security periodically scans endpoints against the list of applications specified on the signature server and detects vulnerable CVEs in applications.
- Go to Policy > Access & Compliance.
- In the Capabilities & Exclusions pane on the right, click the Compliance & Posture tab.
- Scroll-down to Posture Assessment Settings.
- Select the Enable Vulnerability assessment checkbox.
-
Select the scan type.
-
To manually start the scan, click Manual.
Note:To start the scan for the first time:
-
Go to Asset Management > Computers.
-
Select the devices for which you want to scan.
-
Right-click and select Vulnerabilities > Scan Now.
You can start subsequent manual scans by clicking Scan Now in Asset Management > Posture Management or by using the Run Diagnostics push operation.
-
-
To automatically start the scan, click Automated and specify the Interval (Weekly or Monthly), at (time) and every (frequency in days).
-
-
Under Update server type, select the signature server.
-
External Check Point Signature Server
-
Other External Source
-
Under Path, enter the URL of the external source.
-
-
-
To enforce the patch updates, select the Enable patch updates checkbox.
Note:
To apply patch manually, see Applying the Patch for CVEs.
-
To allow users to postpone patch updates, select the Enable patch updates & reboot enforcement checkbox and specify Max user delay in patch update and Force patch update after in hours or days.
-
To enable automatic patch updates, click Advanced Settings and select the Enable automated patch management checkbox:
Note:This is supported only with Endpoint Security Client version E88.20 and higher.
-
To specify the interval for patch updates, from the Set automated patch on list, select Interval, Weekly or Monthly and specify the interval.
-
In the Applications section, specify the application to which you want to apply the patch and select:
-
All applications
-
Select specific applications. Search and select one or more applications.
-
-
In the Severities section, specify the severities to which you want to apply the patch and select:
-
All Severities
-
Select specific severity. Search and select one or more severities.
-
-
To exclude an application from applying the patch, in the Exclude applications section, search and select one or more applications.
-
-
- Click Save.
- At the top, click Install Policy.
After you enable Posture Assessment settings and install the policy, you can view the detected CVE and its CVSS score in the Viewing Endpoint Posture.