I need to use WIN and UNIX credentials for a single scan job in VM? How can i do it?
1. Ensure that each asset is associated with the appropriate authentication record
^To do this, navigate to each of the authentication records for the hosts that you have, edit each one, under the IP section, add the appropriate host IP.
2. Ensure that UNIX and Windows is authentication is checked in the option profile you plan on using to scan with.
3. Start a new scan, using the appropriate option profile. Add the IPs you want to scan and Qualys does the rest of the work. Since you tied each IP to the appropriate authentication record in step 1, Qualys knows to use that authentication record when scanning.
Just ensure that the appropriate authentication record is associated with each asset. Then either do a scan using the IPs or put the IPs in an asset group.
Qualys uses whatever authentication record you had added to the asset when you scan.
Also make sure that both Windows and Unix authentication is enabled in the option profile that you are using.
Yes, good catch R! The option profile that is used to do the scan must have Windows and Unix both checked as well.
Thanks Guys, but still not clear on this or probably I'm missing something.
here's the scenario
Host 1 - WIN OS - user: test1
Host2 - UNIX OS - user test2
Host3 - WIN OS - user: test3
Host4: UNIX OS - user: test4
We have 4 different hosts with different credentials. And I have already enabled WIN & UNIX authentication for each of these hosts.
Now I will add all these 4 hosts in a single scan. Now in VM either I can use WIN authentication or UNIX authentication, but I don't see an option to select "both".
In Scan> Authentication > Already I have UNIX and WIN authentication credentials setup.
How can I perform this type of scenario on authenticated scan?
This is a good question and a real situation for everyone using the tool.
I suggest add create an asset group for all the UNIX Machines and likewise for Windows
Then Create a UNIX Authentication record and Add the Asset Group to Targeted IPs (This is the best way to avoid adding manual IPs which may not work at times). Likewise do the same for Windows as well
Now you can run the Scan and the Authentication records will do the Job for you
Retrieving data ...