ZTE Scan Requirements

The following describes scan requirements for using the ZTE plugin compliance checks.

Credentials

The plugin requires SSH credentials for online scanning. It does not require or support any escalation method.

Permissions

You must have sufficient permissions needed to run a show running-config command.

Some audits may have requirements to run additional commands.

Offline Scanning

The plugin supports offline scanning of ZTE configurations. No permissions or credentials are required for offline scanning, but the results produced will not be associated directly with any asset.

Instead, the results display the name of the configuration filename in the Hosts field.

To run an offline scan, upload the ZTE configuration as a .txt file to the scan or policy.

To upload a file for offline scanning:

1. Log in to an existing ZTE target (for example, via SSH).

2. Run the following command: show running-config.

3. Copy the output to a .txt file.

4. (Optional) To analyze multiple configurations, place each file in a .zip file.

5. Configure your scan with the ZTE ROSNG compliance check.

6. Under Offline Configuration Auditing, for ZTE ROSNG config files(s), upload the .txt or .zip file.

7. Save and launch the scan or policy.