API
<previousResultCode>pass</previousResultCode>
</TestResultInfo>
<TestResultInfo>
<timestamp>1157046206801</timestamp>
<gracePeriod>0</gracePeriod>
<testName>Worms, viruses, and trojans</testName>
<testClass>CheckWormsVirusesAndTrojans</testClass>
<testModule>checkWormsVirusesAndTrojans</testModule>
<testGroup>Software</testGroup>
<actionsTaken>none</actionsTaken>
<debugInfo>None</debugInfo>
<severity>1</severity>
<statusCode>1</statusCode>
<resultCode>pass</resultCode>
<resultMessage>No worms, viruses or trojans were found.</resultMessage>
<policyId>LowSecurity</policyId>
<mostSeriousInRun>false</mostSeriousInRun>
<previousResultCode>pass</previousResultCode>
</TestResultInfo>
</testResults>
<ip>10.1.70.101</ip>
<id>b198ada2-06ce-4e30-bbb9-bcc11ffa777b</id>
<originalTimeStamp>1157046206882</originalTimeStamp>
</MNMDeviceTestedEvent>
-------------------------------------------------------------------------
Java Program and Command for Events
Sentriant AG ships with a sample shell script that invokes Java code that can be used to listen for JMS
events. Invoke the program by entering the following command:
eventListener.sh [-u broker URL] [-t topicName] [-l login -p password]
Where:
●
broker URL
localhost:61616
●
topicName
published on the topic
●
login and password
The following python script is provided with Sentriant AG that can be invoked when an event occurs:
/usr/local/nac/bin/snmpScript.py—Generates an SNMP trap when an event is received.
●
Sentriant AG Requests Supported
The following Sentriant AG requests are supported:
●
TemporarilyAllowAccess
endpoints.
●
TemporarilyDenyAccess
endpoints.
●
ClearTemporaryAccess—
●
DeviceInfoRequest—
266
—The URL of the JMS message bus. If not specified, it defaults to
—The topic on which events are published. By default, all Sentriant AG events are
nac.requests
—Not set by default
—Specifies to temporarily allow access to the specified endpoint or
—Specifies to temporarily deny access to the specified endpoint or
Specifies to clear temporary states for the specified endpoint or endpoints.
Requests the endpoint identification
tcp://
Sentriant AG Software Users Guide, Version 5.3