AnsweredAssumed Answered

Authentication Failure Remediation Tickets

Question asked by urbanindy on Apr 5, 2014



According to remediation tickets cannot be created for information gathered findings.


Is it possible to create a new QID for Windows, Unix, ESX, and SNMP authentication failures and authentication not attempted?  We are actually asking our infrastructure partners to remediate these issues as for us they create significant gaps in our vulnerability detection capabilities.


Is there an OVAL example out there for authentication?  I see file and registry checks, but I'm not sure how we would do authentication failures.


Thank you!