I'm curious to see what others do to test authentication to targets prior to "full" scan execution.
The value in doing this of course is to make sure you can reach the hosts first time around(and not have to schedule another scan/change window to execute to hit those which you couldnt authenticate to, and also to avoid account lockouts.
Does anyone use the mcafee scanner to do this or, do you use batches or other utilities?
The authentication mechanism in the MVM scanner relies on the windows OS for the authentication. On of the things you can do to is connect with the NET USE command and test your credentials, which internally is exactly what the scanner does. You can also use the FSDiag tool to connect to a target to check your credentials.
For a single server scan, we sometimes just mount the drive with the credentials, this ensures that the credentials work on that machine. This is valid for windows only of course
Reviving this question. I have about 80 UNIX boxes that I would like to test the credentials on before performing a scan. Is there a way to do this witjhout having to setup a scan and watch the process and stopping the scan after the logins are attempted? By doing it this way, i would need to look at the logs for all the successfuly logins.
Running mvm 7.5
I found a workaround. I selected the asset discovery template (which has no vuln checks) and then selected one MS patch to look for (same with Red Hat). That causes it to login to check for missing patches. Sinces its just one patch to look for, its fast.