Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Table of Contents
minLevel1
maxLevel7
Info

CyberCNS supports different Firewall Scans using integrations capabilitycan evaluate the security policy of your Sophos Firewall and flag any potential shortcomings. You can initiate a Firewall Scan from the Integrations menu.

Navigate to

...

Integrations

...

  1. In the CyberCNS portal,

...

  1. navigate to Global Settings(⚙) > Integrations and choose Sophos from the integrations listed.

...

  1. Next, you will add credentials for your Sophos

...

Enter Credentials

  1. firewall.

...

Sophos XG

Enter Credentials

Info
  • Before adding the Hostname/ IP address please make sure that the Probe Agent IP has API permission.

  • API Key field is not required to be added into CyberCNS for Sophos XG.

  • The integrated port is the HTTPS Port and the Probe machine IP should be allowed in Sophos Firewall.

3. Enter Name: Choose a name of your choice for the credentials to be added.

4. Enter Hostname/IP Address: Enter a

...

hostname/IP address for the credentials to be added.

5. In the screen depicted below, grant the API permission to the probe IP address.

...

  • Add the probe machine IP under the API section and click on Apply.

...

6. Enter Port Number: Enter the

...

web API port number for the credentials to be added. Currently

...

, use port 4444.

7. Enter Username: Enter the username used to log in to the Sophos Firewall. It is recommended that you define a special username to be used exclusively for these scans so that they can be identified in the firewall’s logs.

8. Enter Password: Enter the password used to log in to the Sophos Firewall.

...

69. Select an associated company: Select the an existing company into CyberCNS so as in order to add this asset under the firewall as an asset of that company of your choice.

...

710. Select Probe/Agent: Select the a Probe/Agent from of the selected company to be used for the scan. In case there is If no agent is installed under a for the company, an external scan agent can be used to initiate firewall scans . This will initiate the scan from the CyberCNS Server (e.g abc.mycybercns.com).

...

11. Once all the

...

data have been entered, click Save.

Note that multiple credentials can be added

...

by using the '+' sign. Each set of credentials can be attached to a company and then to an agent under that company.

...

Sophos XG Firewall Scan

Info

Once After the credentials are added successfully at have been successfully added to the company level, the Firewalls tab will be auto-created into added to the Main Menu.

12. In the Firewalls section,

...

click

...

Firewall Scan

...

to initiate a scan of all the configured firewalls

...

.

...

...

13. When the scan is completed, details of Users, Zones, Groups, Interfaces, Access Rules, and

...

Services are populated for the Sophos Firewall.

...

  • Different Scans of a Completed firewall scans are shown listed with timestamps as shown below. Select the relevant timestamp to check for the respective resultsTo view the results of a scan, click the scan in the list.

...

  • These results are available to The scan results can be downloaded as a report into Docx formatin the Microsoft Word .docx format by clicking Download Report.

...

  • This completes the documentation of the Sophos XG Firewall Scan.