Support User Manuals

Fortinet 3.0 MR7 Network Card User Manual

Open as PDF

of 234

Tools Configuring vulnerability scan jobs

FortiAnalyzer Version 3.0 MR7 Administration Guide

05-30007-0082-20080908 163

To filter the module view by vulnerability threshold

1 Go to Tools > Vulnerability Scan > Module.

2 From View modules with severity, select the subset:

• ==: equal to

• >=: greater than or equal to

• <=: less that or equal to

then select the severity level of modules that you want to view. For example, you

might view modules that test for vulnerabilities with a severity >= Medium.

3 Select Go.

To view vulnerability details

1 Go to Tools > Vulnerability Scan > Module.

2 Select the blue arrows to expand the module group.

3 In the row corresponding to the module, select Details.

Details of the vulnerability tested by that module appear, such as impact of

potential exploits, known solutions, and affected software.

Configuring vulnerability scan jobs

Creating a vulnerability scan job performs an immediate or scheduled vulnerability

scan, and generates a report of scan results.

Before running a vulnerability scan job, you may need to prepare the network and

target hosts for the vulnerability scan job. You may also want to update the RVS

modules and engine to ensure that the report tests for the latest known security

issues. For more information about preparing for a vulnerability scan job, see

“Preparing for the vulnerability scan job” on page 157. For more information about

RVS updates, see “FortiGuard Center” on page 71.

When configuring a vulnerability scan job, you can configure a quick scan, or you

can configure a custom scan. Quick scans perform port scan on certain standard

TCP and UDP ports for services with known vulnerabilities. For a list of port

numbers probed by a quick scan, see the Fortinet Knowledge Center article

Remote Vulnerability Scan Quick Scan ports.

Name The name of the module group or module. Select the blue arrow to

expand a module group. Module groups are organized by the type

of vulnerability or the software which is susceptible.

Severity The severity level of the vulnerability tested by the module.

Description A brief description of the test performed by the module.

Details Select to view additional information on the vulnerability tested by

the module, including impact of potential exploits, known

solutions, and affected software.

previous next