topic VULNERABILITY SCANNING PREVENTED BY CSA in Network Security https://community.cisco.com/t5/network-security/vulnerability-scanning-prevented-by-csa/m-p/425966#M95278 <P>When I scan Windows XP machine with Foundstone(Mcafee) scanner,CSA is preventing the scanning attempt and logging the following message: </P><P></P><P></P><P>9/21/2005 5:03:24 PM: The process '&lt;remote application&gt;' (as user PC1\Admin) attempted to access the registry key '\REGISTRY\MACHINE', value ''. The attempted access was an open (operation = OPEN/KEY). The operation was denied. </P><P></P><P>When scanner tries to access registry to find out windows missing patches,CSA is blocking the attempt immediately. </P><P></P><P>We would like to modify the rule in CSA and also want to make sure it does not create any loopholes. </P><P></P><P>Please help me solve this. </P><P></P><P>Thanks.</P><P></P><P></P> Sun, 10 Mar 2019 09:39:15 GMT snehalshetty 2019-03-10T09:39:15Z VULNERABILITY SCANNING PREVENTED BY CSA https://community.cisco.com/t5/network-security/vulnerability-scanning-prevented-by-csa/m-p/425966#M95278 <P>When I scan Windows XP machine with Foundstone(Mcafee) scanner,CSA is preventing the scanning attempt and logging the following message: </P><P></P><P></P><P>9/21/2005 5:03:24 PM: The process '&lt;remote application&gt;' (as user PC1\Admin) attempted to access the registry key '\REGISTRY\MACHINE', value ''. The attempted access was an open (operation = OPEN/KEY). The operation was denied. </P><P></P><P>When scanner tries to access registry to find out windows missing patches,CSA is blocking the attempt immediately. </P><P></P><P>We would like to modify the rule in CSA and also want to make sure it does not create any loopholes. </P><P></P><P>Please help me solve this. </P><P></P><P>Thanks.</P><P></P><P></P> Sun, 10 Mar 2019 09:39:15 GMT https://community.cisco.com/t5/network-security/vulnerability-scanning-prevented-by-csa/m-p/425966#M95278 snehalshetty 2019-03-10T09:39:15Z Re: VULNERABILITY SCANNING PREVENTED BY CSA https://community.cisco.com/t5/network-security/vulnerability-scanning-prevented-by-csa/m-p/425967#M95285 <HTML><HEAD></HEAD><BODY><P>You can disable the relevant signature in your IDS for this specific host.</P></BODY></HTML> Wed, 28 Sep 2005 18:24:17 GMT https://community.cisco.com/t5/network-security/vulnerability-scanning-prevented-by-csa/m-p/425967#M95285 umedryk 2005-09-28T18:24:17Z