Skip navigation
McAfee Secure sites help keep you safe from identity theft, credit card fraud, spyware, spam, viruses and online scams
1060 Views 3 Replies Latest reply: Feb 19, 2013 10:53 AM by cgrim RSS
arsalan Newcomer 4 posts since
Feb 17, 2013
Currently Being Moderated

Feb 17, 2013 7:50 AM

Shell Credentials Problem

HI

we are testing MVM7.5 in our enviornment and I have Problem with shell credentials.

I want to scan a Redhat V6 and in the the settings tab of scan properties I have added an individual shell

in the Shell Individual Host field I inserted the IP address of the linux server, in User ID tab I inserted the ROOT username of that linux system then in the security section I chose certificate and password to enable the password and confirm password fields then I have inserted the password of root user , in the shell options section I chose SSHv2 or SSHv1, Im sure that my Linux server accepts SSH and I tried to ssh to specified linux server from another Linux machine , I even tried different options of Privileged Access section but still when I look at the log messages in my linux server all the authentication attempts from the MVM serverhave been failed

I spent lots of time trying other options like default shell and Shell Domain but still I couldnt gain any results

by any result I mean there is no difference between a default scan with no credentials and with credentials

I have tested the Credentials for windows networks and it worked perfectly but in linux Im kinda loosing my hope

so I came here to ask for your help!

thanks in adavance

Arsalan.

  • subhani Newcomer 28 posts since
    Dec 14, 2009
    Currently Being Moderated
    1. Feb 18, 2013 1:45 AM (in response to arsalan)
    Re: Shell Credentials Problem

    Hello Arsalan , It should work the way you configured .By the way , are you enterring the credentials within the scan Or maintaining a Credentials set  .Let me summarize it below .

    Account Type : Shell Individual Host

    Shell Individual Host : Type IP Address

    User ID : Specify user name

    Password & confirm password : Enter password

    Protocol : SSHV2 or SSHV1

    Security : Certificate or Password

    Privilege Access : First try with none ,else use Root .

    Before trying with Foundstone ,use Putty and attempto Server yourself on port 22 and see if it works .Once connected , run some command such as whoami , uname -a etc.  Additionally ,look for this article (KB54752) on Mcafee KB and it will tell you exactly what commands are run by MVM on Linux .

  • Community Leader 479 posts since
    Nov 3, 2009
    Currently Being Moderated
    3. Feb 19, 2013 10:53 AM (in response to arsalan)
    Re: Shell Credentials Problem

    Hi arsalan,

     

    For added security, you may want to leave that box unchecked.  To around the need to select that option in the scan you need to first run a scan to collect the Target SSH keys, then manually 'trust' the targets thru Manage  > Assets.

     

    The following KB Article goes into the details a bit:

     

    https://kc.mcafee.com/corporate/index?page=content&id=KB70687

     

    I hope that helps!
    Cathy

More Like This

  • Retrieving data ...

Bookmarked By (0)

Legend

  • Correct Answers - 5 points
  • Helpful Answers - 3 points