Unmanaged and Unsupported Hosts

by Dave Breslin
March 20, 2012

Sample

This report template was designed to identify unmanaged and unsupported operating systems and appliances within a large enterprise. The sample above was cut from one of three chapters in the template and depicts eight hosts that do not partcipate in an enterprise's Active Directory domain. To see a full report use the download example link.

It is recommended one of SecurityCenter’s “Full Safe” scan policy templates be used to construct a credentialed scan to produce a comprehensive set of results for the report chapters to use.

The “Outside Windows Domain” chapter works by filtering on hosts that have an identified NetBIOS workgroup that is not the enterprise’s Active Directory domain name. An asset list needs to first be established that reports all hosts that have NetBIOS workgroup names that are not the Active Directory domain name. A place holder in both the chapter’s table and bar chart will be available on importing and editing the template for setting to the appropriate asset list. The following screen shot shows how the asset list was built:

AssetList1

The “Unidentified Host Platforms” chapter works by filtering on hosts that plugin 11936, "OS Identification" cannot identify. An asset list needs to first be established that reports all hosts with an operating system of "unknown". A place holder in both the chapter’s table and bar chart will be available on importing and editing the template for setting to the appropriate asset list. The following screen shot shows how the asset list was built in the design of both:

AssetList2

The “Unsupported Host Platforms” chapter works by filtering using several plugins that identify obsolete and unsupported operating system and appliance platforms:


12521    MacOS X Version Unsupported
19699    Microsoft Windows NT 4.0 Unsupported Installation Detection
21626    Microsoft Windows 95/98/ME Unsupported Installation Detection
33850    Unsupported Unix Operating System
47709    Microsoft Windows 2000 Unsupported Installation Detection
55933    Unsupported Junos Operating System
56997    VMware ESX / ESXi Unsupported Version Detection
57641    Unsupported IPSO Firewall

Please note that plugin 56997 is a member of the plugin family "VMware ESX Local Security Checks" and requires the scan to have the appropriate credentials for ESX platforms to work. Also, plugin 55933 is a member of the plugin family "Junos Local Security Checks" and requires the appropriate credentials for Junos appliances.

An asset list needs to first be established that reports all hosts that have results for the plugins mentioned. A place holder in both the chapter’s table and pie chart will be available on importing and editing the template for setting to the appropriate asset list. The following screen shot shows how the asset list was built:

Unsupported