Understanding the vGW Series Introspection Registry Check Feature

You can use the vGW Security Design VM Introspection module to inspect the registry in Microsoft OS VMs to identify user-defined registry keys and their values. You can also use it to add new registry keys.

Before you use the Settings module vGW Application Settings > Registry Values page to configure the registry introspection settings, you must be familiar with the Introspection module. For details, see Understanding the vGW Series Introspection Module and in particular the other topics identified in the Related Topics section of this topic.

The vGW Security VM performs the Registry inspection. It requires that the scanned VM is on a host on which the vGW Security VM resides and therefore is secured by vGW Series. However, the VM to be scanned does not need to be secured.

You can use the registry introspection feature to:

You can populate the registry with values that can be used in Smart Groups for disk introspection. To configure registry introspection settings, you use the Settings module vGW Application Settings > Registry Values page. The configuration elements correlate to the registry values shown in regedit. The configuration values are:

Warning: The Key that you enter must begin with the prefix HKEY_LOCAL_MACHINE\. This is the only registry root that vGW Security VM currently supports. If the key that you enter does not contain this prefix, vGW Series displays the following alert message and highlights the Key input field.

Currently only registry values under root HKEY_LOCAL_MACHINE are supported. Please enter a key that starts with HKEY_LOCAL_MACHINE.

To add a new value:

  1. Click Add.
  2. Enter a Name for the configuration. For this example, enter Sample Directory.
  3. Enter the registry Key. For this example, enter HKEY_LOCAL_MACHINE\Software\Software\Sample Application\Sample Version.
  4. Enter a Value Name. For example, enter SampleDir.
  5. Enter Data to associate with the registry key name. For example, enter C:\Program Files\Sample Vendor\Sample\.
  6. Click Save.

Related Documentation