Agent Assessment

Purpose

This document describes how to set up a Agent Assessment scan.

Introduction

The Agent Assessment is the process of identifying and evaluating the security risks and vulnerabilities within mobile and remote hosts such as agent equipped workstations. The goal of a agent assessment is to identify potential security weaknesses and remediate them before they can be exploited by attackers.

A Agent Assessment identifies the operating system and software applications installed on the host and assesses their vulnerability to known exploits and attacks.

The results of the assessment can be used to prioritize vulnerabilities and develop a plan for remediation that includes applying security patches, reconfiguring access controls or network services, or implementing additional security controls such as intrusion detection or prevention systems.

It is important that agent assessments should be performed regularly, as new vulnerabilities can be introduced as software is updated or new applications are installed.

Set up

Select Agent assessment.
Fill in the Name input field with a descriptive name for the intended assessment.
Enter a value in the Scan Recurrence field to specify the scan recurrence in hours. The minimum frequency is 24 hours, and the maximum is 30 days.
Asset Tags
Click on the blue Add button in the lower right corner to add the configuration.

Running Agent assessment manually from the Scan configuration is not supported, so the Scan Now button is disabled and cannot start agent scans.

Agents are asynchronous in their behavior, and are not connected to Outscan to "receive" scans when started like HIABs. Instead the agent has a duration between each scan in hours with an allowed range of 24-720 (1d-30d). When the data from an agent has been fully received, Outscan then runs reporting to complete the scan.

Purpose

Introduction

Set up

Related Articles