#37963 Re: TraceSecurity - QVA Asset Classification - Bank of Montana
Customer Reply
Created Apr 21, 2026, 2:57 PM
Check-in (internal)
Apr 21, 2026, 2:57 PM
Hi Emilie,
The scans for your Vulnerability Assessment are complete, and we are now ready to move on to the next phase of the project. In order to do so, you may follow the instructions about classifying your hosts (included below). This process is OPTIONAL but highly encouraged. We allow clients to classify their hosts in TraceInsight Vuln Manager in order to provide information about how critical a device (IP address) is to your organization’s IT infrastructure. By combining this data with the vulnerabilities found on the IP address, we can generate a more accurate portrayal of your network’s health based on the vulnerabilities found on the devices that are most important to you.
In general, we give clients three business days to classify nodes, but the sooner you can let us know that you have completed host classification, the sooner we can deliver your report. However, because this is an optional step of the Vulnerability Assessment, you can also choose not to complete host classification, and we will move forward with delivering your report after three business days.
To get to your hosts in the application, login into your TraceInsight account and go to:
- Vuln Manager module > Hosts page
- Click the Set Criticality button on the host you want to classify. Please note that by default, Vuln Manager classifies external devices as Critical and internal devices as Low criticality.
- In the new pop-up window, you can modify the criticality of the host. In order to properly classify the node, you should be able to determine how important/vital the node is to your business:
· Critical: Devices/hosts that are part of your core operations, or that can be accessed externally, or both. Examples include external firewalls, mail servers, and web servers.
| Started | Ended | Hours | Notes |
|---|---|---|---|
| No time entries | |||