Cisco Viptela Scan Requirements

The following describes scan requirements when using the Cisco Viptela plugin.

Credentials

The plugin requires SSH credentials for online scanning. It currently does not require or support any escalation method.

Permissions

You must have the sufficient permissions needed to run a show running-config command,

Some audits may have requirements to run other commands.

Offline Scanning

The plugin supports offline scanning of Viptela configurations. You do not need permissions or credentials for offline scanning, but the results produced are not associated directly with any asset. Instead, the results show the name of the configuration file name in the Hosts field.

To run an offline scan, upload the Viptela configuration as a .txt file to the scan or policy.

To upload a file for offline scanning:

1. Log in to an existing Viptela target (for example, via SSH).

2. Run the following command:

   show running-config

3. Copy the output to a .txt file.

4. (Optional) To analyze multiple configurations, place each file in a .zip file.

5. In the scan or policy with the Viptela audit, upload the .txt or .zip file to Viptela config file(s).

6. Save and launch the scan or policy.