Meraki

Community

CISCO Meraki MS 120 - Qualys Vulnerability Scan

Solved
Holiver
Just browsing
‎Jan 5 2024 4:17 AM
‎Jan 5 2024 4:17 AM

CISCO Meraki MS 120 - Qualys Vulnerability Scan

Hello Team,

 

We have a customer that uses CISCO Meraki.

I would like to know if is it possible to perform a Vulnerability Scans using some type of service credential? Authenticated Scan?

0 Kudos
1 Accepted Solution
KarstenI
Kind of a big deal
Kind of a big deal
‎Jan 5 2024 4:33 AM
‎Jan 5 2024 4:33 AM

Yes, but it will not be that useful like the scanning of PCs for example.

There is not much to scan for what a login is needed. But it could be HTTP for the status page and SNMP.

If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.

View solution in original post

8 Replies 8
KarstenI
Kind of a big deal
Kind of a big deal
‎Jan 5 2024 4:33 AM
‎Jan 5 2024 4:33 AM

Yes, but it will not be that useful like the scanning of PCs for example.

There is not much to scan for what a login is needed. But it could be HTTP for the status page and SNMP.

If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.
In response to KarstenI
Holiver
Just browsing
‎Jan 5 2024 7:19 AM
‎Jan 5 2024 7:19 AM 

I tried to perform the scan via SNMP but it did not authenticated. 
Is there any configuration that I need to perform on Meraki to enable the Scan via SNMP?
0 Kudos
In response to Holiver
KarstenI
Kind of a big deal
Kind of a big deal
‎Jan 5 2024 7:46 AM
‎Jan 5 2024 7:46 AM

It has to be enabled:

https://documentation.meraki.com/General_Administration/Monitoring_and_Reporting/SNMP_Overview_and_C...

You need to enable it for the devices (Network-wide > Configure > General > Reporting), not for the Dashboard.

If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.
0 Kudos
In response to KarstenI
Holiver
Just browsing
‎Mar 8 2024 7:38 AM
‎Mar 8 2024 7:38 AM

Hi, KarstenI.

The firewall team activated the SNMP settings according procedure, but the vulnerability scan does not authenticate with the community credentials.
Do you know someone who already managed to perform an authenticated Qualys Scan on Meraki via SNMP?

The Qualys Vulnerability Scan is able to peform this Scan on Meraki?
Qualys support/have compatibility to perform this Scan according to Qualys Matrix Support?
Link bellow (Authentication Technologies Matrix):
 https://success.qualys.com/support/s/article/000006761

0 Kudos
In response to Holiver
KarstenI
Kind of a big deal
Kind of a big deal
‎Mar 8 2024 7:49 AM
‎Mar 8 2024 7:49 AM

Sorry, no. I don't have this anywhere running. But you can start troubleshooting by trying to query the device with snmpwalk.

If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.
0 Kudos
Inderdeep
Kind of a big deal
‎Jan 5 2024 6:33 AM
‎Jan 5 2024 6:33 AM

Yes, as we are using Qualys for all Cisco and Meraki devices as well. Go ahead

Cisco Awarded Blogs 2020/2021 https://www.thenetworkdna.com/
0 Kudos
In response to Inderdeep
Holiver
Just browsing
‎Jan 5 2024 7:20 AM
‎Jan 5 2024 7:20 AM 

Do you have some process or recommendation related to how to perform a vulnerability Scan?

 

0 Kudos
In response to Holiver
BlakeRichardson
Kind of a big deal
Kind of a big deal
‎Jan 7 2024 1:13 PM
‎Jan 7 2024 1:13 PM

My advice with vulnerability scans is if you don't know how to do these I would approach a company to do this. This information needs to be accurate because if it's not and the customer gets attacked and the cause was something that should have been in your report you could be liable. 

If you found this post helpful, please give it Kudos. If my answer solves your problem, please click Accept as Solution so others can benefit from it.
li.common.scroll-to.top
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco ID. If you don't yet have a Cisco ID, you can sign up.
© 2025 Cisco Systems, Inc.