TOC & Recently Viewed

Recently Viewed Topics

Red Hat Enterprise Virtualization Syntax

The syntax for this plugin and an audit are as follows:

<custom_item>

description: "RHEV: Authorized Users"

info: "Make sure only authorized users allowed to log in to the target."

request: "/api/users"

xsl_stmt: '<xsl:template match="users">

<xsl:for-each select="user">

UserName: <xsl:value-of select="user_name"/>

Name: <xsl:value-of select="name"/>

-</xsl:for-each>

</xsl:template>'

solution: "Review the list of users, and disable any unauthorized users"

</custom_item>

This plugin also allows you to include API requests with the search feature. The following example runs a search for events that have a severity of greater than or equal to “error”.

<custom_item>

description: "RHEV: Review Events with severity >= Error"

request: "/api/events?search=severity>=error"

xsl_stmt: '<xsl:template match="events">

<xsl:for-each select="event">

description: <xsl:value-of select="description"/>

time: <xsl:value-of select="time"/>

-

</xsl:for-each>

</xsl:template>'

not_expect : "Description"

</custom_item>

Copyright 2017 - 2018 Tenable, Inc. All rights reserved. Tenable Network Security, Nessus, SecurityCenter, SecurityCenter Continuous View and Log Correlation Engine are registered trademarks of Tenable, Inc. Tenable, Tenable.io, Assure, and The Cyber Exposure Company are trademarks of Tenable, Inc. All other products or services are trademarks of their respective owners.