Greenbone / Openvas scanning

Usage

• Greenbone is very specific about its host headers.

• It is smart to enroll authorized users into LDAP form the LDAP config option.

• To configure a a scan, go through the “Configuration” pulldown menu.

• To execute a scan, go through the “Scan” pulldown menu.

Troubleshooting

Name resolution issues

• The name used as a startup parameter to Greenbone must be a name your web browser can resolve.

• This must be the name you use in the URL. The default connection port is 4000.

Login problems

• Update your LDAP password! It probably expired. Use your IPA host.

SSH broken, host inaccessible, or something similar

• If it is running in an LXC container under Proxmox and called greenbone00, SSH to the hypervizor and use….

vmid=`pct list | grep greenbone00 | awk '{print $1'}`
pct start ${vmid}
pct enter ${vmid}

You changed the hostname

• Edit ///etc/default/openvas-gsa// and change this line…

ALLOW_HEADER_HOST=greenbone00.local.mydomain.com

Host is fine, but the services are not running

• SSH to greenbone00 and…

systemctl restart openvas-manager openvas-scanner openvas-gsa