Rapid7 Nexpose and InsightVM
  • 4 Minutes To Read
  • Print
  • Share
  • Dark
    Light

Rapid7 Nexpose and InsightVM

  • Print
  • Share
  • Dark
    Light

Rapid7 Nexpose is an on-premise vulnerability management solution, providing discovery, detection, verification, risk classification, impact analysis, reporting and mitigation.
Rapid7 InsightVM is a cloud-based vulnerability management solution that combines Rapid7’s Insight platform along with Nexpose core capabilities.

Types of Assets Fetched

This adapter fetches the following types of assets:

  • Devices

Parameters

  1. Host name (required) - The hostname or IP address of the Rapid7 Nexpose/InsightVM server.
  2. Port (required) - Use port 3780.
  3. User name and Password (required) - The credentials for a user account that has the Required Permissions to fetch assets.
  4. Token (for 2FA only) (optional, default: empty)
    • If supplied, Axonius will use two factor authentication when communicating with the Rapid7 Nexpose/InsightVM server. If you have enabled Two Factor Authentication, specify the Two Factor Authentication token.
    • If not supplied, Axonius will not use two factor authentication when communicating with the Rapid7 Nexpose/InsightVM server.
  5. Fetch tags (required, default: False) - Select whether to fetch devices tags from Rapid7 Nexpose/InsightVM.
    • If enabled, Axonius will fetch tags associated with devices data from Rapid7 Nexpose/InsightVM.
    • If disabled, Axonius will not fetch tags associated with devices data from Rapid7 Nexpose/InsightVM.
  6. Fetch installed software (required, default: False) - Select whether to fetch installed software from Rapid7 Nexpose/InsightVM.
    • If enabled, Axonius will fetch installed software data from Rapid7 Nexpose/InsightVM.
    • If disabled, Axonius will not fetch installed software data from Rapid7 Nexpose/InsightVM.
  7. Fetch open ports (required, default: False) - Select whether to fetch open ports from Rapid7 Nexpose/InsightVM.
    • If enabled, Axonius will fetch open ports data from Rapid7 Nexpose/InsightVM.
    • If disabled, Axonius will not fetch open ports data from Rapid7 Nexpose/InsightVM.
  8. Fetch policies (required, default: False) - Select whether to fetch the policies associated with devices from Rapid7 Nexpose/InsightVM.
    • If enabled, Axonius will fetch policies associated with devices from Rapid7 Nexpose/InsightVM.
    • If disabled, Axonius will not fetch policies associated with devices from Rapid7 Nexpose/InsightVM.
  9. Fetch vulnerabilities (required, default: False) - Select whether to fetch devices' vulnerabilities from Rapid7 Nexpose/InsightVM.
    • If enabled, Axonius will fetch vulnerabilities data from Rapid7 Nexpose/InsightVM.
    • If disabled, Axonius will not fetch any vulnerabilities data from Rapid7 Nexpose/InsightVM.
  10. Site name exclude list (optional, default: empty) - Specify a comma-separated list of site names to be excluded from data fetch.
    • If supplied, Axonius will not fetch devices from the specified site names.
    • If not supplied, Axonius will fetch devices from all site names.
  11. Number of simultaneous devices (optional, default: empty) - Set the number of simultaneous devices received from Rapid7 Nexpose/InsightVM server to gain better control on the performance of all connections of for this adapter.
    • If not supplied, Axonius will set the number as 50.
  12. Do not fetch devices with no MAC address and no hostname (required, default: False) - Select whether to exclude fetching devices without MAC address and without hostname.
    • If enabled, Axonius will only fetch devices having MAC address or hostname.
    • If disabled, Axonius will fetch devices even if those do not have MAC address and no hostname.
  13. Verify SSL (required, default: False) - Verify the SSL certificate offered by the value supplied in Host name. For more details, see SSL Trust & CA Settings.
    • If enabled, the SSL certificate offered by the value supplied in Host name will be verified against the CA database inside of Axonius. If the SSL certificate can not be validated against the CA database inside of Axonius, the connection will fail with an error.
    • If disabled, the SSL certificate offered by the value supplied in Host name will not be verified against the CA database inside of Axonius.
  14. HTTPS Proxy (optional, default: empty) - A proxy to use when connecting to the value supplied in Host name.
    • If supplied, Axonius will utilize the proxy when connecting to the value supplied in Host name.
    • If not supplied, Axonius will connect directly to the value supplied in Host name.
  15. HTTPS Proxy User Name (optional, default: empty) - The user name to use when connecting to the value supplied in Host name via the value supplied in HTTPS Proxy.
    • If supplied, Axonius will authenticate with this value when connecting to the value supplied in HTTPS Proxy.
    • If not supplied, Axonius will not perform authentication when connecting to the value supplied in HTTPS Proxy.
  16. HTTPS Proxy Password (optional, default: empty) - The password to use when connecting to the value supplied in Host name via the value supplied in HTTPS Proxy.
    • If supplied, Axonius will authenticate with this value when connecting to the value supplied in HTTPS Proxy.
    • If not supplied, Axonius will not perform authentication when connecting to the value supplied in HTTPS Proxy.
  17. For details on the common adapter connection parameters and buttons, see Adding a New Adapter Connection.

image.png

APIs

Axonius uses Rapid7 InsightVM API Version 3.

Required Permissions

The value supplied in Username must have read access to devices.

Creating User and Password Credentials in the Rapid7 Nexpose Admin Panel

To create a read-only username and password credentials for Axonius:

  1. Connect to the Rapid7 Nexpose admin panel as an admin, and go to the administration panel
    image.png

  2. In the users panel, click "Create" to create a new account for Axonius.

    image.png

  3. From the General menu option, fill in the user details,
    If you have enabled Two Factor Authentication, generate a Two Factor Authentication token, to be used in the Rapid7 Nexpose adapter configuration in Axonius.

    image.png

NOTE
To enable Two Factor Authentication:
1. As a Global Administrator, go to the Administration tab.
2. Click the Administer link in the Global and Console Settings section.
3. Select Enable two factor authentication.
  1. Click the Roles menu option and Select the "User" role.

    image.png

  2. Click the Site Access menu option and select "Allow this user to access all sites".

    image.png

  3. Click the Asset Group Access menu option and select "Allow this user to access all asset groups".

    image.png

  4. Click Save and login at least once to the admin panel. This will create the user.

Was This Article Helpful?