Pau Lo
asked on
nessus scan evidence (what was scanned and when)
would a nessus scan include details of which devices/IP were scanned? We need to provide assurances that all servers joined to our domain are scanned at least every 14 days, and the only evidence we would have is the actual report. I am unsure having not used the product how the initial scan/scope is configured, but it would be interesting if you have to manually enter a list of IP's/server names, or if it integrated with AD etc, any feedback on what evidence could be used from within nesses for validating what scans they have run would be most useful. Would the scan results also include a time/date when it was run, and can the results be exported/provided by the admin and viewed on a machine without nessus installed?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
For consideration