1 Reply Latest reply: Feb 25, 2013 6:35 PM by cgrim RSS

    Credential scan of network devices

    tpowell

      Our management has just inquired whether running credential scans on network devices would be beneficial.  I said it might not be because there's probably not a whole lot of checks for those that require credentials.  Is there any documentation or a way to determine how many/which checks for Cisco devices require credentials?  Also, many of the checks state they're for a specific router/switch and wouldn't apply to us.  If there's any info such as the model of the device affected, that would be beneficial as well. 

        • 1. Re: Credential scan of network devices

          Hi t.

           

          This KB tells you what OS Flavor / version  the MVM SSH Module can authenticate to.

           

          https://kc.mcafee.com/corporate/index?page=content&id=KB53051

           

          Your other question is a little more complex.  

           

          If you go to scans / new scan.  Choose the Shell Advanced Scan Template

          Then go to the Settings Tab,  Vuln Selection

          Shell Vulnerabilities

          Then look at  Vuln Selections for the following 2 categories, it should give you an idea about how many Cisco checks we have that require credentials (Both the following categories require credentials):

          Cisco IOS Patches and Hotfixes

          &

          SSH Miscellaneous

           

          I hope that helps!
          Cathy