Table of Contents
Advertisement
Possible Scenarios
Introduction
What assets are
vulnerable to
attacks?
What assets are on
the network?
What services are
running?
What operating
systems are
running?
IBM Proventia Network Enterprise Scanner User Guide, Version 1.3
The tracking features available with Enterprise Scanner and SiteProtector are adaptable,
and you can easily integrate them with your company's workflow. This topic suggests
some ways to use the tracking and remediation features.
You want to check all assets on the network for vulnerabilities.
Scenario:
Run an assessment scan to identify which assets on the network have
Action plan:
vulnerabilities that have not been patched. If you find vulnerable assets, create a ticket to
patch the vulnerabilities.
You do not want assets added to the network without approval. You want to
Scenario:
know what assets are currently running on your network.
Run a discovery scan to identify all assets on the network. If you find an
Action plan:
unauthorized asset, create a ticket to locate the asset and take appropriate action.
You want to verify that assets on your network are running only approved
Scenario:
services.
Identify services you do not want to run on any assets in the network. Run an
Action plan:
assessment scan to determine what services are running on network assets. Enterprise
Scanner can scan for TCP services, UDP services, or both. Create a ticket to investigate and
disable unauthorized services or remove assets from the network.
You want to verify that assets on the network are running only approved
Scenario:
operating systems.
Run a discovery scan for the range of IP addresses for active assets. Identify
Action plan:
any assets running unapproved or outdated operating systems. Create a ticket to locate
assets that are out of compliance, and update their operating systems.
Possible Scenarios
185
Advertisement
Table of Contents
