Submit a ticketCall us
Home > Success Center > Network Configuration Manager (NCM) > NCM Documentation > NCM 7.9 Administrator Guide > View firmware vulnerability data > Ensure HA servers have complete firmware vulnerability data

Ensure HA servers have complete firmware vulnerability data

Table of contents
No headers

Updated: September 25, 2018

If you have implemented High Availability (HA) backup servers in your SolarWinds deployment, you must make sure that all servers have comprehensive firmware vulnerability data. When a failover occurs, the new server will not have the latest VulnData.sdf file. When the nightly update occurs, by default NCM downloads only recently added or updated vulnerability data, so the data will still be incomplete.

To ensure that your HA backup servers have complete firmware vulnerability data when a failover occurs, SolarWinds recommends that you add the data feeds from this year and last year to your NCM .

  1. Find the URL of the NIST vulnerability feeds for this year and last year:
    1. Go to the XML Vulnerability Feeds page on the NIST site: https://nvd.nist.gov/vuln/data-feeds#XML_FEED
    2. In the row for the current year's CVE file, hover over the ZIP file link in the NVD XML 2.0 Schema column.
    3. Right-click the link and choose Copy Link Address.

      FirmwareVulnerabilities_CopyLinkAddress.png

  2. Add the link to the NCM Firmware Vulnerability Settings:
    1. Click Settings > All Settings.
    2. Under Product Sepcific Settings, click NCM Settings.
    3. Under Advanced, click Firmware Vulnerability Settings.
    4. In the Vulnerability Data Import Settings section, click Add New.
    5. Paste the link address that you copied in the previous step
  3. Repeat these steps to add the feed for the previous year.

    FirmwareVulnerabilities_updatedSettings.png

  4. Click Submit to save the updated settings.

 

Last modified

Tags

Classifications

Public