Solved

Retina scans local system, but not a remote system.

Posted on 2009-04-10
7
1,979 Views
Last Modified: 2013-12-06
I create Retina audit scans and test them on my local computer, and they work perfect. They pull all of the information I was auditing for. I run the same scan on a remote systems, and get basic data back (DNS Name, MAC, OS) but when I ask to enumerate installed software, I get nothing back. I have administrator rights on all systems. I can use RDC into remotes desktops and servers using my elevated credentials. But I can not get Retina to pull the data from remotes. What am I missing?
0
Comment
Question by:chapmancd
7 Comments
 
LVL 76

Expert Comment

by:arnold
Comment Utility
I am unfamiliar with the application you are using, does it/can it handle SNMP polling?
Do you have SNMP setup on the systems?
snmpwalk will list some of the installed software.  Do not have the OID under which it is listed in front of me.
0
 
LVL 76

Expert Comment

by:arnold
Comment Utility
Use HOST-RESOURCES-MIB::hrSWInstalledName or 1.3.6.1.2.1.25.6 as the base OID to get the listing of installed software.
0
 
LVL 3

Expert Comment

by:c01000100
Comment Utility
This sounds like more of a firewall or other security permissions issue on the remote systems.  Do you have any way of testing for firewall issues or the ability to modify security policies?
0
 

Expert Comment

by:lcullum01
Comment Utility
I would have to agree that this issue is a firewall issue.  Does the local computers have a local firewall on? Are they on the same network as you?  Are you getting that creditals are enabled in the scan?
0
 

Accepted Solution

by:
KCS_SD earned 250 total points
Comment Utility
You could check the LAN Manager authentication levels:  if they are 'too different' on the machine you are scanning from and your remote machines, you will not be able to scan completely.
0

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

Today, still in the boom of Apple, PC's and products, nearly 50% of the computer users use Windows as graphical operating systems. If you are among those users who love windows, but are grappling to keep the system's hard drive optimized, then you s…
This story has been written with permission from the scammed victim, a valued client of mine – identity protected by request.
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

7 Experts available now in Live!

Get 1:1 Help Now