Nozomi Guardian and CMC
  • 13 Oct 2024
  • 2 Minutes to read
  • Dark
    Light
  • PDF

Nozomi Guardian and CMC

  • Dark
    Light
  • PDF

Article summary

Nozomi Guardian and CMC (formerly Nozomi Networks Guardian) monitors network communications and device behavior for physical and virtual appliances.

Parameters

  1. Guardian Appliance Domain (required) - The Nozomi Networks Solution's web interface IP or domain that Axonius can communicate with via the Required Ports.
  2. User Name and Password (optional) - The credentials for a user account that has the Required Permissions to fetch assets.
Note:

When OpenAPI Key Name and OpenAPI Key Token are not supplied, User Name and Password are required.

  1. OpenAPI Key Name and OpenAPI Key Token (optional) - This is an OpenAPI key associated with a user account that has the Required Permissions to fetch assets. See Chapters 3 and 5 in the N2OS User Manual for instructions on creating an OpenAPI key.
Note:

When User Name and Password are not supplied, OpenAPI Key Name and OpenAPI Key Token are required.

  1. Verify SSL - Select whether to verify the SSL certificate of the server against the CA database inside of Axonius. For more details, see SSL Trust & CA Settings.

  2. HTTPS Proxy (optional) - Connect the adapter to a proxy instead of directly connecting it to the domain.

To learn more about common adapter connection parameters and buttons, see Adding a New Adapter Connection.

Nozomi Guardian and CMC


Advanced Settings

Note:

Advanced settings can either apply for all connections for this adapter, or you can set different advanced settings and/or different scheduling for a specific connection, refer to ​Advanced Configuration for Adapters

  1. Do not populate hostnames and asset names with MAC addresses (optional, default: False) - When selected, hostnames and asset names of devices will remain empty if the source has a MAC address for the asset's name/hostname.
  2. Pagination page size - The number of devices to fetch in each request.
  3. Async chunks in parallel - The number of requests to run in parallel.
  4. Fetch devices vulnerabilities - Select this option to fetch vulnerabilities.
  5. Use last seen by - Select which field to use as the aggregated “Last Seen“ field, either "Time" (default) or "Last activity time".
  6. Skip Vulnerabilities below likelihood value - Enter a value so that the adapter won't fetch vulnerabilities that have a likelihood value below the set value.
    • The default is 0, meaning all vulnerabilities will be fetched if Fetch devices vulnerabilities is also turned on.
    • In order to enable Skip Vulnerabilities below likelihood value, Fetch devices vulnerabilities must not be selected.
Note:

To learn more about Adapter Configuration tab advanced settings, see Adapter Advanced Settings.


Required Ports

Axonius must be able to communicate with the value supplied in Guardian Appliance Domain via the following ports:

  • TCP port 443: SOAP API

Required Permissions

The value supplied in User Name must have read access to devices.
The credentials of the user performing the OpenAPI call to query data must be in a group that has the Queries and exports permission set. This allows the user to view the query section and to export data.

image.png


Was this article helpful?

What's Next