NCM Vulnerability/CVE Management in Offline Installation

Hello,

I´ve installed NCM 2023-4-2 in an offline environment (means the orion server don´t has internet access).
I want to download and use firmware vulnerability information as described here:
https://documentation.solarwinds.com/en/success_center/ncm/content/ncm-adding-firmware-vulnerability-files.htm

So I´ve removed the default internet weblink and added the two tar files as described.

However, I do not see any vulnerability information neither on the NCM config summary dashboard nor in any vulnerability report.
The zip files are where exspected. Any idea how to fix this ?

best regards
Alfred

Find more posts tagged with

offline

cve

ncm

Accepted answers

All comments

ldelt

You could use a Powershell script:

## "https://downloads.solarwinds.com/solarwinds/data/cve/cve-all.json.zip"">downloads.solarwinds.com/.../cve-all.json.zip"
$URLs = @(""https://downloads.solarwinds.com/solarwinds/data/cve/cve-all.json.zip")">downloads.solarwinds.com/.../cve-all.json.zip")
$DestFolder = 'C:\ProgramData\SolarWinds\NCM\Vuln\Json'
$CVEzips = @("cpematch.json.zip", "cve-all.json.zip")

$URLs |
ForEach-Object {
Start-BitsTransfer -Source $_ -Destination $DestFolder
}

Expand-Archive -LiteralPath 'C:\ProgramData\SolarWinds\NCM\Vuln\Json\cve-all.json.zip' -DestinationPath 'C:\ProgramData\SolarWinds\NCM\Vuln\Json\' -Force
Expand-Archive -LiteralPath 'C:\ProgramData\SolarWinds\NCM\Vuln\Json\cpematch.json.zip' -DestinationPath 'C:\ProgramData\SolarWinds\NCM\Vuln\Json\CpeMatch\' -Force

Remove-Item -Path 'C:\ProgramData\SolarWinds\NCM\Vuln\Json\cve-all.json.zip' -Force
Remove-Item -Path 'C:\ProgramData\SolarWinds\NCM\Vuln\Json\cpematch.json.zip' -Force

# Build Connection to SWIS - SolarWinds Platform
$SwisHost = "SolarwindsHost"
$Swis = Connect-Swis -Hostname $SwisHost -Certificate

Invoke-SwisVerb -SwisConnection $swis -EntityName NCM.VulnerabilitiesAnnouncements -Verb StartVulnerabilityMatching -Arguments ""
Invoke-SwisVerb -SwisConnection $swis -EntityName NCM.VulnerabilitiesAnnouncements -Verb IsVulnerabilityMatchingActive -Arguments ""

Since you are using an offline environment, you need to adapt the first lines.