Rapid7 Nexpose
  • 3 minutes to read
  • Print
  • Share
  • Dark
    Light

Rapid7 Nexpose

  • Print
  • Share
  • Dark
    Light

Rapid7 Nexpose is a vulnerability management solution, including discovery, detection, verification, risk classification, impact analysis, reporting and mitigation.

Types of Assets Fetched

This adapter fetches the following types of assets:

  • Devices

Parameters

  1. Host name (required) - The hostname or IP address of the Rapid7 Nexpose server.
  2. Port (required) - Use port 3780.
  3. User name and Password (required) - The credentials for a user account that has the Required Permissions to fetch assets.
  4. Token (for 2FA only) (optional, default: empty)
    • If supplied, Axonius will use two factor authentication when communicating with the Rapid7 Nexpose server. If you have enabled Two Factor Authentication, specify the Two Factor Authentication token.
    • If not supplied, Axonius will not use two factor authentication when communicating with the Rapid7 Nexpose server.
  5. Fetch tags (required, default: False) - Select whether to fetch devices tags from Rapid7 Nexpose.
    • If enabled, Axonius will fetch tags associated with devices data from Rapid7 Nexpose.
    • If disabled, Axonius will not fetch tags associated with devices data from Rapid7 Nexpose.
  6. Fetch installed software (required, default: False) - Select whether to fetch installed software from Rapid7 Nexpose.
    • If enabled, Axonius will fetch installed software data from Rapid7 Nexpose.
    • If disabled, Axonius will not fetch installed software data from Rapid7 Nexpose.
  7. Fetch open ports (required, default: False) - Select whether to fetch open ports from Rapid7 Nexpose.
    • If enabled, Axonius will fetch open ports data from Rapid7 Nexpose.
    • If disabled, Axonius will not fetch open ports data from Rapid7 Nexpose.
  8. Fetch policies (required, default: False) - Select whether to fetch the policies associated with devices from Rapid7 Nexpose.
    • If enabled, Axonius will fetch policies associated with devices from Rapid7 Nexpose.
    • If disabled, Axonius will not fetch policies associated with devices from Rapid7 Nexpose.
  9. Fetch vulnerabilities (required, default: False) - Select whether to fetch devices' vulnerabilities from Rapid7 Nexpose.
    • If enabled, Axonius will fetch vulnerabilities data from Rapid7 Nexpose.
    • If disabled, Axonius will not fetch any vulnerabilities data from Rapid7 Nexpose.
  10. Number of simultaneous devices (optional, default: empty) - Set the number of simultaneous devices received from Rapid7 Nexpose server to gain better control on the performance of all connections of for this adapter.
    • If not supplied, Axonius will set the number as 50.
  11. Do not fetch devices with no MAC address and no hostname (required, default: False) - Select whether to exclude fetching devices without MAC address and without hostname.
    • If enabled, Axonius will only fetch devices having MAC address or hostname.
    • If disabled, Axonius will fetch devices even if those do not have MAC address and no hostname.
  12. Verify SSL (required, default: False) - Verify the SSL certificate offered by the value supplied in Host name. For more details, see SSL Trust & CA Settings.
    • If enabled, the SSL certificate offered by the value supplied in Host name will be verified against the CA database inside of Axonius. If the SSL certificate can not be validated against the CA database inside of Axonius, the connection will fail with an error.
    • If disabled, the SSL certificate offered by the value supplied in Host name will not be verified against the CA database inside of Axonius.
  13. For details on the common adapter connection parameters and buttons, see Adding a New Adapter Connection.

image.png

APIs

Axonius uses Rapid7 InsightVM API Version 3.

Required Permissions

The value supplied in Username must have read access to devices.

Creating User and Password Credentials in the Rapid7 Nexpose Admin Panel

To create a read-only username and password credentials for Axonius:

  1. Connect to the Rapid7 Nexpose admin panel as an admin, and go to the administration panel
    image.png

  2. In the users panel, click "Create" to create a new account for Axonius.

    image.png

  3. From the General menu option, fill in the user details,
    If you have enabled Two Factor Authentication, generate a Two Factor Authentication token, to be used in the Rapid7 Nexpose adapter configuration in Axonius.

    image.png

NOTE
To enable Two Factor Authentication:
1. As a Global Administrator, go to the Administration tab.
2. Click the Administer link in the Global and Console Settings section.
3. Select Enable two factor authentication.
  1. Click the Roles menu option and Select the "User" role.

    image.png

  2. Click the Site Access menu option and select "Allow this user to access all sites".

    image.png

  3. Click the Asset Group Access menu option and select "Allow this user to access all asset groups".

    image.png

  4. Click Save and login at least once to the admin panel. This will create the user.

Was this article helpful?