Greenbone / Openvas scanning
############################

Usage
=====

* Greenbone is very specific about its host headers.
* It is smart to enroll authorized users into LDAP form the LDAP config option.
* To configure a a scan, go through the "Configuration" pulldown menu.
* To execute a scan, go through the "Scan" pulldown menu.

Troubleshooting
===============

Name resolution issues
^^^^^^^^^^^^^^^^^^^^^^

* The name used as a startup parameter to Greenbone must be a name your web browser can resolve.

* This must be the name you use in the URL.  The default connection port is **4000**.

Login problems
^^^^^^^^^^^^^^

* Update your LDAP password!  It probably expired.  Use your IPA host.

SSH broken, host inaccessible, or something similar
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^

* If it is running in an LXC container under Proxmox and called **greenbone00**, SSH to the hypervizor and use....

.. code-block::

    vmid=`pct list | grep greenbone00 | awk '{print $1'}`
    pct start ${vmid}
    pct enter ${vmid}
..

You changed the hostname
^^^^^^^^^^^^^^^^^^^^^^^^

* Edit ///etc/default/openvas-gsa// and change this line...

.. code-block::

    ALLOW_HEADER_HOST=greenbone00.local.mydomain.com
..

Host is fine, but the services are not running
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^

* SSH to **greenbone00** and...

.. code-block::

    systemctl restart openvas-manager openvas-scanner openvas-gsa
..