Manual upload of Vulnerable Items
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
3 weeks ago
Hi All,
I am doing a manual import of Vulnerable Items to test how it works. I have a Windows Server CI which has a FQDN, IP Address and a Hostname. When I do the manual import through the UI, the resulting vulnerable item is linked to a newly created 'Unclassed hardware record'. What options do I have for debugging this? I'm not clear on why/how it is not finding the right CI to link to the VI.
Thanks,
Jack
1 REPLY 1
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
3 weeks ago
- Hey @Jack,
You have to troubleshoot the specific set of CI lookup rules in use for the manual upload.
You could have an FQDN, IP & Hostname, but as long as the rules do not exactly match the uploaded data to an existing CI, an unclassed hardware record will be created.
Assuming there have not been any major changes in the CI lookup rules (OOTB) and the provided information in the excel template is valid, the chance is quite high that the rules simply did not match directly to the CI you are looking for.
check the following:
- Is the CI youre trying to match to operational and present in the CMDB?
-Is the IP based lookup rule enabled and does the IP-address match the target CI?
-Does the FQDN actually match (sometimes the cmdb stores the hostname only in the name field of the CMDB, in those cases you may need to tweak the CI lookup rules a bit to account for this
