api:export:externalsystemopenvas
Table of Contents
ExportAPI: OpenVAS task
This feature is available version 0.12 or higher.
This destination creates OpenVAS scan tasks for yourCMDB objects using the OpenVAS Manager Protocol (OMP). For each object, a single scan task is built. The following name is used for the OpenVAS scan task and target:
format: <namespacePrefix><CMDB-ID> <hostname> <taskname> example: yourCMDB_1287 server1.yourcmdb.org Admin-Michael Batz
The OpenVAS tasks and targets are created for the given OpenVAS user (parameter ompUser) and permissions are created for a specific OpenVAS role (parameter taskVisibilityRole). Each user in that role can read the exported tasks and start/stop/resume the scanning for the tasks but cannot change any tasks/targets.
Configuration
| short information | |
|---|---|
| class name | ExternalSystemOpenvas |
| needed destination parameter | ompHost |
| ompPort | |
| ompUser | |
| ompPassword | |
| scannerName | |
| configName | |
| taskVisibilityRole | |
| needed variables | hostname |
| taskname | |
| ip | |
destination parameters
| name | required | description | example |
|---|---|---|---|
| ompHost | required | OpenVAS manager hostname/ip | 10.0.1.104 |
| ompPort | required | OpenVAS manager port | 9390 |
| ompUser | required | OpenVAS manager username | admin |
| ompPassword | required | OpenVAS manager password | admin |
| scannerName | required | Name of the OpenVAS scanner object to use | OpenVAS Default |
| configName | required | Name of the OpenVAS scan config to use | Full and very deep ultimate |
| taskVisibilityRole | required | Name of the OpenVAS role, for which the created tasks are visible | User |
| namespacePrefix | optional | prefix to use in names for OpenVAS tasks/targets | yourCMDB_ |
variables
| name | required | description | example |
|---|---|---|---|
| taskname | required | information which is part of the taskname | test |
| hostname | required | hostname which is part of the taskname | localhost |
| ip | required | ip address to scan | 127.0.01 |
Examples
example of export task configuration:
<task name="openvas-example">
<sources>
<source objecttype="server" status="A" fieldname="management-secscan" fieldvalue="true" />
</sources>
<destination class="ExternalSystemOpenvas">
<parameter key="ompHost" value="10.0.1.104" />
<parameter key="ompPort" value="9390" />
<parameter key="ompUser" value="admin" />
<parameter key="ompPassword" value="admin" />
<parameter key="scannerName" value="OpenVAS Default" />
<parameter key="configName" value="Full and very deep ultimate" />
<parameter key="taskVisibilityRole" value="User" />
<parameter key="namespacePrefix" value="yourCMDB_" />
</destination>
<variables>
<variable name="taskname">
<value objecttype="server" fieldname="Name" />
</variable>
<variable name="ip">
<value objecttype="server" fieldname="management-ip" />
</variable>
<variable name="hostname">
<value objecttype="server" fieldname="hostname" />
</variable>
</variables>
</task>
api/export/externalsystemopenvas.txt · Last modified: 2017/07/24 11:43 (external edit)
Except where otherwise noted, content on this wiki is licensed under the following license: GNU Free Documentation License 1.3
