We are currently facing an issue where Qualys is reporting systems with multiple IPs as different hosts. E.g A system (hostname :- abc.hbo.com) with 2 IPs is reported as 2 different systems. As a result of which the number of vulnerability and vulnerable systems in our network is being reported much higher than it is actually is. Please suggest how we can mitigate this False positive alerts.
ManyThanks Arijit Das
Aijit,
Try changing the Tracking Method of your host to "DANS" or "NETBios. You can do that under "Assets -> Host Assets".
Regards!