Report Types

Subnets List

The first report contains a list of all of the discovered subnets. Each subnet in the list is a hyperlink to the reports that are speicific to that subnet.

General Information

There are reports containing general information about a subnet. As before, there are two kinds of these reports: a wide table showing "All Devices" (below) and lists of devices that meet a particular set of criteria. For example, there is a list of all devices that respond only to SNMPv1; also bilingual agents that respond to SNMPv2c; and multi-lingual agents that respond to SNMPv3. General reports should contain mostly devices colored GREEN indicating there is no known vulnerability. Use the scroll bar below to find them.

SNMP Security Parameters

This category of reports presents information about community strings, USM users, VACM groups, MIB views, and other parameters used to configure SNMP agents. For example, the report to the right shows community strings discovered on devices in the network.

You can click on a particular security parameter to see another report showing a list of devices where that security parameter is used. Try it now. Click on "public" to see a list of devices that response to that community string.


SNMP Security Vulnerabilities

There are two kinds of reports that show security vulnerabilities. The report below is an example of the first kind. It presents a wide table that shows all agents with security vulnerabilities at-a-glance. You can click on a column header to sort the table by a particular column. For example, to bring to the top of the list all agents that fail CERT tests, click twice on the column header labeled "Fails CERT Tests". Scroll to the top of the page and try it now. An arrow will appear to indicate the sort direction.

SNMP Security Vulnerabilities (continued)

There are two kinds of reports that show security vulnerabilities. The report to the right is an example of the second kind. It presents a list of devices that have a particular kind of vulnerability. In this case, it is "Agents That Allow SNMPv1/SNMPv2c Write Access". All of the rows are the same color, because all of the devices have the same vulnerability.


Reports About a Specific Network Device

In all of the report types previously presented, device names and IP addresses are hyperlinks. If you follow any of those links, a report about the speicific network device is presented. An example of such a report is shown to the right.


Prev

Next Topic: Trivial Authentication