This blog was co-authored by Naveen Bibinagar, Greg Wiseman, and Joel Kinzel.
During our most recent “Seeing 20/20 with InsightVM” customer webcast on Custom Policy Builder, we received a lot of great questions from attendees. So many, in fact, that we didn’t have time to answer all of them! In this post, we are going to address some of the questions that were asked in the live session:
1. Which InsightVM version release is Custom Policy Builder available for?
We released Custom Policy Builder as part of the June 3, 2020 release (InsightVM 6.6.25).
2. What permissions do you need in order to edit the policies? Global admin? Can access to Custom Policy Builder be limited in the RBAC configuration of InsightVM?
Global administrator roles on InsightVM console by default have full permissions to create, copy, and modify custom policies. If not a global admin, a custom role can be created with “manage policies” permission to allow only those specific users to either copy, create, or customize policies.
Currently, Custom Policy Builder permissions are coupled with the permissions available on InsightVM Console.
3. With all the options in the policies, is there any way to determine how much load or time it may add during the scans of assets? Clients will want to know how hard their systems will be hit during scans, fearing performance issues on their asset.
This is highly dependent on the policy in question and the systems being scanned. If performance issues are a concern, it may help to schedule policy scans to occur during off-peak hours, if possible. Otherwise, it may help to do a test scan using tools such as Windows Performance Monitor.
4. Should we ..
Support the originator by clicking the read the rest link below.
