Tools

Configuring vulnerability scan jobs

Name

The name of the module group or module. Select the blue arrow to

 

expand a module group. Module groups are organized by the type

 

of vulnerability or the software which is susceptible.

Severity

The severity level of the vulnerability tested by the module.

Description

A brief description of the test performed by the module.

Details

Select to view additional information on the vulnerability tested by

 

the module, including impact of potential exploits, known

 

solutions, and affected software.

To filter the module view by vulnerability threshold

1Go to Tools > Vulnerability Scan > Module.

2From View modules with severity, select the subset:

==: equal to

>=: greater than or equal to

<=: less that or equal to

then select the severity level of modules that you want to view. For example, you might view modules that test for vulnerabilities with a severity >= Medium.

3Select Go.

To view vulnerability details

1Go to Tools > Vulnerability Scan > Module.

2Select the blue arrows to expand the module group.

3In the row corresponding to the module, select Details.

Details of the vulnerability tested by that module appear, such as impact of potential exploits, known solutions, and affected software.

Configuring vulnerability scan jobs

Creating a vulnerability scan job performs an immediate or scheduled vulnerability scan, and generates a report of scan results.

Before running a vulnerability scan job, you may need to prepare the network and target hosts for the vulnerability scan job. You may also want to update the RVS modules and engine to ensure that the report tests for the latest known security issues. For more information about preparing for a vulnerability scan job, see “Preparing for the vulnerability scan job” on page 157. For more information about RVS updates, see “FortiGuard Center” on page 71.

When configuring a vulnerability scan job, you can configure a quick scan, or you can configure a custom scan. Quick scans perform port scan on certain standard TCP and UDP ports for services with known vulnerabilities. For a list of port numbers probed by a quick scan, see the Fortinet Knowledge Center article Remote Vulnerability Scan Quick Scan ports.

FortiAnalyzer Version 3.0 MR7 Administration Guide

 

05-30007-0082-20080908

163

Page 173
Image 173
Fortinet 3.0 MR7 manual Configuring vulnerability scan jobs, Details, 163