I am asking about either of the states listed in the OR statement in the title, however focusing on IGNORED as an example - if I set a ticket to ignored, then any vulnerabilities found matching the specific vuln and host associated with this ticket will not result in a new ticket being created. That I am happy with.
However, if I set the DB preferences (FCM console) to delete stale tickets older than X days, I have the following questions:
- Is an IGNORED ticket potentially counted as stale, and therefore deleted?
- If it is deleted, will the fact that it has been ignored now be irrelevant, ie any scan carried out from that time forward will result in a ticket being created for the vulnerability on the target host?
the most relevant post I have found so far is https://community.mcafee.com/message/229859