• [look_and_feel] (page 89)
• [ipranges] (page 90)
• [RADIUS_server_options] (page 93)
• [single signon]
• [java] (page 94)
• [fs-850 options]
• [remediation] (page 94)
first run flag
Entry Default Description
first_run 1 until you log onto
The first time you log onto the enterprise manager, if this value is set to 1, the
server_name value is sent to the engine as the "default"
portal server.
Optional enterprise manager settings
[server]
Entry Default Description
server_url / Base URL used to access the
enterprise manager.
server_root Windows 2003 C:\Program
Install path for the enterprise manager.
server_cache Windows 2003 C:\Program
Path for temporary files.
reports_dir Windows 2003 C:\Program
The report engine uploads scan reports to this directory.
custom_reports_dir Windows 2003 C:\Program
The report engine uploads custom reports to this directory.
font_dir C:\Windows\Fonts Path for Windows fonts.
server_name COMPUTERNAME Name of this server. This should be the name used to access the system, such as the DNS or NetBIOS name of the system.
Optional enterprise manager settings
Entry Default Description
server_protocol http or https Depends on install options.
Protocol used to access the enterprise manager.
Either http or https.
server_cert_dir %installdirectory%\
Foundstone\Configur ation
Directory containing the SSL certificates.
portal_id Internal system identification;
do not change this setting.
[API Server]
Entry Default Description
API_primary Server that hosts the API
server (including the port to access the API server).
API_secure "1" indicates that a SSL connection should be made to the API server.
API_proxy_host API_proxy_port
Proxy information if a proxy is required for connecting to the API server.
API_connection_
timeout 5 The number of seconds to
wait for a connection to the API server.
API_response_time
out 180 The number of seconds to
wait for a response to a query from the API server.
API_authenticate 1 "1" indicates the use of certificates to authenticate a connection to the API server.
API_authenticate_
cn Indicates whether or not to
verify against the CN value of a certificate.
No value - Turns off CN verification.
hostname - The web portal gets the host name of the server and verifies it against the CN value.
Any other value is verified against the CN value.
Optional enterprise manager settings
Entry Default Description
API_reconnect_
interval 180 The number of seconds
required before a reconnection to the API server can be made.
API_stream_select_
timeout 3 The number of seconds PHP
waits for the stream notification events before quitting and trying again.
api_authenticate_ca Windows 2003 C:\Program
Path for the Certificate Authority file.
api_authenticate_
client Windows 2003
C:\Program
Path for the certificate file the API server uses to
communicate with the enterprise manager.
[session]
Entry Default Description
session_validate_ip true Validates that the current web browser IP address is the same as it was when authenticated at logon time.
Either true or false.
Optional enterprise manager settings session_validate_browser Validates that the
current browser session is the same as it was when authenticated at logon time.
Either true or false.
Not implemented by default.
[report_server]
Entry Default Description
report_server [hostname of
report engine server]:port
Type the host name or IP address, colon (:), port number for the report engine server.
Example:
MYHOST.XYZ.COM:3802
report_server_secure 1 Type 1 to use SSL,
otherwise type 0.
report_push_check 1 Only allows file transfers from the report_server and API_primary addresses.
[optional]
Entry Default Description
enable_dashboard_
alerts_max 100 Maximum number of alerts to
display at one time.
scan_pulldown_alpha false How to sort pull-down scan list.
true = sort alphabetically by scan name
false = sort in reverse chronological order by scan date
short_chars 30 Number of characters before
the scan name is truncated in the Dashboard and menus.
Optional enterprise manager settings
Entry Default Description
string_chunk_len 100 When FSL scripts retrieve information from a host, this number determines how many characters long each line should be before being truncated.
string_chunk_delimiter " " Type the character (or space) to be used to break the
information from the host into individual lines.
scan_config_dropdown 30 Determines the number of scans to be displayed on the Scan drop-down box on the Home page.
tree_expansion_default On pages other than the Organization Management or asset management (containing Java interfaces), this number determines how many levels of the organization tree are shown.
There is no default value assigned as of McAfee Vulnerability Manager 7.5. A value of 3 indicates that an organization tree shows the root level, 1st child level, and 2nd child level of workgroups.
disable_quickscan 1 Disables the Quick Scan feature from the enterprise manager.
This is disabled by default.
submit_feedback 1 Displays the Product Updates, Release News, and Feedback link in the enterprise manager.
auto_refresh_rate 10 The number of seconds before the web page is automatically refreshed.
To disable, set the value to 0.
[look_and_feel]
Entry Default Description
color_buttonf ;000000 Enterprise manager color scheme setting.
Optional enterprise manager settings
Entry Default Description
color_buttonb ;333399 Enterprise manager color scheme setting.
color_headerf ;FFFFFF Enterprise manager color scheme setting.
color_headerb ;333399 Enterprise manager color scheme setting.
color_grey1 ;e3e3e3 Enterprise manager color scheme setting.
color_grey2 ;cccccc Enterprise manager color scheme setting.
color_grey3 ;3581cd Enterprise manager color scheme setting.
font verdana Enterprise manager typeface
setting.
font_size 1 Enterprise manager font size
setting.
[ipranges]
Entry Default Description
enable_ipranges true Enable the entry of IP ranges through the enterprise
manager. When set to False, IP ranges can only be entered through the API server.
max_ipranges 8000 Maximum number of IP ranges to import from a text file before truncating.
[mvas]
Entry Default Description
enable_mvas_options false Managed Service use only.
Either true or false.
threats false Managed Service use only.
Either true or false.
Optional enterprise manager settings
[debug]
Entry Default Description
debug 0 Enterprise manager debug mode.
on=1 and off=0
debug_soap 0 Enterprise manager debug mode:
include soap events in the output.
on=1 and off=0
debug_report_server 0 Enterprise manager debug mode:
used to test report uploads.
on=1 and off=0
debug_msi_server 0 Create log files when language packs are pushed on the server that executes them.
Enable log=1; Disable log =0
[fcgi]
This section is used for debugging the FastCGI components in McAfee Vulnerability Manager 7.5. It might be used in a support call situation when additional logging needs to be turned on to help identify a problem.
[reports]
Entry Default Description
report_server_timeout 1200 Number of seconds to wait between attempts to upload reports to the server.
[il8n]
Entry Default Description
il8n_language Determines which language to
display in the product.
cs = Chinese Simplified ct = Chinese Traditional de = German
en = English es = Spanish fr = French ja = Japanese kr = Korean
il8n_bullet Determines the default bullet
character used throughout the enterprise manager.
Optional enterprise manager settings
[threats]
Entry Default Description
max_threats 6 Determines the number of
threats that can be viewed at one time on the Threat Correlation page.
McAfee Vulnerability Manager 7.5 supports showing up to 19 threats at a time.
max_intervals 4 Determines the number of
business units that can be viewed at one time on the Threats by Business Unit page.
tcv_enable_default_bu 1 0 disables this feature. If there is a default business unit, it comes from the administrator.
1 enables users to see a default business unit containing all scans that the user can access.
tcv_select_default _bu 1 0 disables this feature. If there is a default business unit available, it is not automatically selected when opening the Threat Correlation page.
1 enables this feature.
The default business unit is selected by default when you view the Threat Correlation page. The default business unit contains data for all scans and workgroups that the user can access.
Optional enterprise manager settings
Entry Default Description
tcv_central_admin_default_bu 0 0 disables this feature. A default business unit containing all workgroups is not created for the Root Organization
Administrator.
1 enables this feature. A default business unit containing the organization and all workgroups is created for the Root Organization Administrator.
Note: Since the default business unit contains data for all organizations and workgroups, the Threat Correlation page can take a long time to load all of the data.
[RADIUS_server_options]
Entry Default Description
use_radius_auth Set to "1" to turn on RADIUS authentication.
This is disabled by default.
radius_primary_
address IP address for the IAS server
or TekRADIUS server.
radius_primary_
secret Type the secret used during
IAS or TekRADIUS set up.
radius_primary_port The authentication port used.
radius_type_options The type of protocol used.
Examples: PAP, CHPA_MD5, and MSCHAPv2.
Optional enterprise manager settings
[java]
Entry Default Description
java_use_dynamic_jre_
versioning
false Enables you to use the Sun Java Runtime Engine version 1.4 or later for computers on which the enterprise manager is running. To use a different version, change this entry to true. The version of the JRE is then managed by Sun via their web server.
Changing this setting to true allows you to use a version of the JRE on which you have standardized that might differ from the current version (1.6.0_07).
Note: Version 1.6.0_07 or later of the JRE is required. Earlier versions might appear to be accepted, but they are
unsupported and the enterprise manager might not display properly.
[remediation]
Entry Default Description
disable_verify 0 Specifies whether you want to disable verification of tickets:
0 = do not disable verification 1 = disable verification