Qualys Blog

www.qualys.com

FDCC Enhancement: SCAP Scanning of Windows 7, Windows 7 Firewall, and IE8

With the continued growth and adoption of the Security Content Automation Protocol (SCAP), the National Institutes of Standards and Technology (NIST) is publishing more content to support the new United States Government Configuration Baseline (USGCB). With the release of QualysGuard 6.17, users can now import NIST content and scan Windows 7, Windows 7 Firewall, and Internet Explorer 8 in the QualysGuard FDCC Module.

Importing NIST Content

Since NIST has not finalized the content for Windows 7 and Internet Explorer 8, the FDCC Module does not currently have the new content available for import. However, the current content from NIST can be uploaded as a custom policy in the FDCC Module. To access the NIST content, please visit http://web.nvd.nist.gov/view/ncp/repository. Once you have the files downloaded, you can upload the content by performing the following steps:

  1. From the Tools section, select Policies
  2. From the menu, select New, FDCC Policy…
  3. Choose the following files downloaded from the NIST website.          
      • XCCDF Content
      • CPE OVAL Definitions
      • CPE 2.0 Dictionary
      • OVAL Compliance Definitions
  4. NOTE: Since the NIST content is still in draft, Schematron Validation is not currently supported for Windows 7 and Internet Explorer 8.

    FDCC - Win 7

    Figure 1: New FDCC Policy: Validate

  5. Click Validate to create the policy.
  6. Once validated, verify the Title, FDCC Profile, and Description. Click Save.
  7. FDCC - Policy

    Figure 2: New FDCC Policy : Save

  8. Add Asset Group(s) to the new FDCC policy.

Scanning Targets

Once the FDCC policy has been created, you are ready to scan targets by performing the following steps:

  1. From the Navigation section, select FDCC Scan
  2. From the menu, select New, Scan
  3. Enter the following information and click Launch:
    • Title
    • FDCC Policy
    • Compliance Profile
    • Scanner Appliance
    • Asset Group(s)

FDCC - Launch

Figure 3: Launch FDCC Scan

Leave a Reply