Skip to main content

Enable Credentialed Scanning in Bulk

Nodeware
Updated

The Nodeware dashboard has received a feature that allows multiple selection and the ability to apply credentials for Authenticated Scanning in bulk.

By default the Nodeware sensor performs unauthenticated scans. In order to enrich your scan results, we have developed a "credentialed" scan solution.

Credentialed scanning, often times referred to as authenticated scanning, provides a much deeper scan result as the Nodeware sensors will have more rights to the assets.
Credentials can leverage WINRM (Windows) or SSH (Mac and Linux).

 

To enable credentialed scanning there are a few steps that need to be under taken by the user.

WINDOWS:

IMPORTANT! Confirm the asset to be scanned has Windows Remote Management enabled and configured.

https://docs.microsoft.com/en-us/windows/win32/winrm/installation-and-configuration-for-windows-remote-management

macOS:

1) Enable SSH access on each individual asset

https://knowledge.autodesk.com/support/smoke/troubleshooting/caas/sfdcarticles/sfdcarticles/Enabling-remote-SSH-login-on-Mac-OS-X.html

Linux:

1) Enable SSH access on each individual asset

https://www.cyberciti.biz/faq/ubuntu-linux-install-openssh-server/

 

Now that you have configured the endpoint from remote access its time to configure credentials in the Nodeware dashboard.

MSP's:

Edit the customer you wish to enable credentials for by

  • Select Customers from the menu on the left
  • Select the Gear wheel to enter the customer configuration screen

mceclip1.png

  • Next select "Credentialed Scanning" from the  menu options

mceclip0.png

  • Select Add Credential and fill out the required fields.
    NOTE: we recommend creating a Nodeware service account to allow access tracking.

mceclip2.png

 

Repeat steps above until you have supplied all the desired credential types for your network.

 

Now its time to tell Nodeware which assets and which credentials to use for each device.
Using the Nodeware multi-select feature here are the steps to apply credentials in bulk.

  • Load the asset view for the customer for which we would like to perform authenticated scanning
  • From the asset view select each like device. i.e. all Windows 10 machines by clicking the radio buttons to the left of the devices IP address (see image below)

mceclip5.png

Once selected, you will see a KEY icon mceclip8.png display in the header.

mceclip6.png

You will now be presented with Credentials option modal.

Select the correct credential type for the assets in which you want to perform authenticated scans.
Then from the "Benchmark to Run" select the correct operating system type and click apply.

mceclip10.png

Congratulations you have just performed bulk credentialing.

 

 

Related articles

Comments

0 comments

Please sign in to leave a comment.

Powered by Zendesk