Hi All,

today is the last part of the secunia csi integration

after the installation, open the SCCM console as administrator

navigate to software library (note that there is a new node called Secunia)

expand the node and click configure and enter your credentials

if you havent configured the wsus, it is time (see the screenshots) and refer to Part 4 (http://wmug.co.uk/wmug/b/dotraphael/archive/2013/01/24/3rd-party-patch-management-part-4.aspx) on how to import/export the certificate

After the configuration, it is time to deploy patches. Select the node patches

select the software update you want to deploy and click Create update package

follow the wizard (in this case i left all default settings) and at the end, click  ok for the package successfully created

after this, now it is time to sync the software update. If you don’t do it, you’ll not see the new product (see bellow screenshots before and after sync)

once the sync is done (you will see this on the logs), you have the new software into the all software updates and will be able to manage the same way.

 

 

Hi all,

today we’ll set up the CSI SCCM Plugin. To do this, you need to download it from http://secunia.com/vulnerability_scanning/corporate/sccm_plugin/

Once you have downloaded, execute it (I’m doing it on the SCCM Server itself). On the Welcome screen, click Next

Choose where you want to install and click Next

Select the location of the SCCM console. (it should have already been populated with the right path). Click Next

Accept the License Agreement and click Install 

Once completed, click Finish

Hi all,

today we’ll set up the CSI and to do this, you will need to run the csi as administrator

once you open, connect using your CSI username/password

if its the 1st time, it will ask you information about the password, recovery, etc…

once its done, you’ll be able to scan hosts for vulnerabilities. to do this, just click on successfully scan one host link

select type 2 (all paths) and the ip addresses you want to scan or leave the default to scan the localhost only. click scan

scan will start

you can also check the reports to see the information about the scan on each computer.

Note: CSI can also connect to the SCCM via Software Inventory. in this series of posts i’m not doing this, instead, i’m using CSI built-in scan functionality.

that’s it for this post, next one we will connect CSI with SCCM using the CSI plug-in connector.

Hi all,

in this post i’ll start preparing the server for Secunia CSI…

i’m using the CSI v6 that is compatible with Windows Server 2012 and System Center 2012 Configuration Manager SP1. To download it, go to secunia webpage (http://secunia.com/products/corporate/csi/). there is also the plugin for the SCCM and you can download it from http://secunia.com/vulnerability_scanning/corporate/sccm_plugin/

i’m using a server called SRV0004 where the CM12 SP1 is already installed.

before perform any setup, we need to configure the IE, to add the secunia website as trusted website. to do this, open the IE and go to options->security.

add the https://*.secunia.com to the trusted zone

after this let’s start the setup of csi 6.0. On the welcome screen, click next

On the License agreement, click I accept the terms of the license agreement and click next

Readme Information, click Next

Choose the Install location and click Install

Complete the CSI Setup, click Finish

once the screen closes, click NO for the question about launching the Secunia CSI now.

well..that’s it for this post..see you on the next one.