Ensure HA servers have complete firmware vulnerability data

If you have implemented High Availability (HA) backup servers in your SolarWinds deployment, you must make sure that all servers have comprehensive firmware vulnerability data. When a failover occurs, the new server will not have the latest VulnData.sdf file. When the nightly update occurs, by default NCM downloads only recently added or updated vulnerability data, so the data will still be incomplete.

To ensure that your HA backup servers have complete firmware vulnerability data when a failover occurs, SolarWinds recommends that you add the data feeds from this year and last year to your HA backup servers.

1. Find the URL of the NIST vulnerability feeds for this year and last year:
   1. Go to the JSON Vulnerability Feeds page on the NIST site: https://nvd.nist.gov/vuln/data-feeds#JSON_FEED
   2. In the row for the current year's CVE file, hover over the ZIP file link in the NVD JSON 1.1 Schema column.

   3. Right-click the link and choose Copy Link Address.

      

      (Screenshot property of © 2020 National Institute of Standards and Technology)

2. Add the link to the NCM Firmware Vulnerability Settings:
   1. Click Settings > All Settings.
   2. Under Product Specific Settings, click NCM Settings.
   3. Under Advanced, click Firmware Vulnerability Settings.
   4. In the Vulnerability Data Import Settings section, click Add New.
   5. Paste the link address that you copied in the previous step.

3. Repeat these steps to add the feed for the previous year.

   

4. Test the URLs you added.

5. Click Submit to save the updated settings.