topic Re: VCenter 7.0 Photon OS ACAS Scan in VMware vCenter™ Discussions

VCenter 7.0 Photon OS ACAS Scan

nhkelley — Mon, 06 Feb 2023 21:49:35 GMT

Hello;

Trying to perform vulnerability ACAS Scans (Tenable Nessus product v5.19) on our newly integrated vSphere Vcenter 7.0. Photon OS Server.

I was told that 7.0 does not utilized VMWare Simple Object Access Protocol (SOAP) API, but now uses Representational State Transfer (REST) API. Tenable supports SOAP only.

How can someone obtain a good credential ACAS scan for the vSphere 7.0 VCenter Server now using Photon OS instead of Linux OS as it was previously with 6.7 or 6.5?

Re: VCenter 7.0 Photon OS ACAS Scan

maksym007 — Tue, 07 Feb 2023 20:39:17 GMT

Why are you digging so deep? Maybe I am wrong - but install latest vCenter version for 7.0.3

Re: VCenter 7.0 Photon OS ACAS Scan

Redhatcc — Fri, 10 Feb 2023 11:38:06 GMT

This is probably a DoD vCenter server. I would recommend upgrading to 7.0.3. A lot changed if your are on 7.0.2 or below. Also, try a credential scan with ACAS if possible, and you would need an account with elevated privilege's.

Re: VCenter 7.0 Photon OS ACAS Scan

nhkelley — Tue, 21 Feb 2023 22:26:11 GMT

maksym007 - Not digging deep. Just requesting assistance for answers. We do have vCenter version 7.0.3 installed. Trying to achieve a good credential scan using SSH with admin privileges elevated up to the Root level. Once again, VCENTER SOAP API does not appear to work with vCenter 7 as with previous vCenter version 6.7. What configuration setting is required for a good credential scan for vCenter 7.0.3?

Re: VCenter 7.0 Photon OS ACAS Scan

nhkelley — Tue, 21 Feb 2023 22:26:33 GMT

Redhatcc - You are correct, it is a DoD vCenter server for discussion. We have just begun integrating vCenter 7.0.3 and using elevated privileges up to the root level for our ACAS Scans. Still working on getting credentials scans with this new version. Any suggestions, comments, or recommendations that would be of help is greatly appreciated. Thanks!