ArubaOS Scan Requirements
The following describes scan requirements for using the ArubaOS plugin compliance checks.
Credentials
The plugin requires SSH credentials for online scanning. It does not require or support any escalation method.
Permissions
You must have sufficient permissions needed to run a show running-config command.
Some audits may have requirements to run additional commands.
Offline Scanning
The plugin supports offline scanning of ArubaOS configurations. No permissions or credentials are required for offline scanning, but the results produced will not be associated directly with any asset.
Instead, the results display the name of the configuration filename in the Hosts field.
To run an offline scan, upload the ArubaOS configuration as a .txt file to the scan or policy.
To upload a file for offline scanning:
-
Log in to an existing ArubaOS target (for example, via SSH).
-
In the command line interface (CLI), run the following command:
show running-config -
Copy the output to a .txt file.
-
(Optional) To analyze multiple configurations, place each file in a .zip file.
-
In the scan or policy with the ArubaOS audit, upload the .txt or .zip file to ArubaOS config file(s).
-
Save and launch the scan or policy.