.png?sv=2022-11-02&ss=b&srt=o&spr=https&st=2024-04-26T09%3A48%3A36Z&se=2024-04-26T09%3A58%3A36Z&sp=r&sig=%2FWO0aJuv8Ka3Fyl0R6%2B7131LVcHml9P0rTYHiiHB%2BKA%3D){kind=logo}
Web Server Information - Enrich Asset Data
- 10 Apr 2024
- 2 Minutes to read
- Print
- DarkLight
- PDF
Web Server Information - Enrich Asset Data
- Updated on 10 Apr 2024
- 2 Minutes to read
- Print
- DarkLight
- PDF
Article Summary
Share feedback
Thanks for sharing your feedback!
Web Server Information - Enrich Asset Data (Enrich Device Data with Web Server Information) action enriches the web servers that are the results of the query with information about the web server including the server type, its version and operating system, the content management system (CMS) name and its version, the installed CMS plugins and versions and more.
See Creating Enforcement Sets to learn more about adding Enforcement Actions to Enforcement Sets.
General Settings
- Enforcement Set name (required) - The name of the Enforcement Set. A default value is added by Axonius. You can change the name according to your needs.
- Add description - Click to add a description of the Enforcement Set. It is recommended to describe what the Enforcement Set does.
- Run action on assets matching following query (required) - Select an asset category and a query. The Enforcement Action will be run on the assets that match the query parameters.
- A query only returns results for the asset type it was created for.
- Not all asset categories are supported for all Enforcement Actions.
- See Actions supported for Activity Logs, Adapters Fetch History, and Asset Investigation modules.
- See Actions supported for Vulnerabilities.
- See Actions supported for Software.
- Action name (required) - The name of the Main action. A default value is added by Axonius. You can change the name according to your needs.
- Configure Dynamic Values - Toggle on to enter a Dynamic Value statement. See Creating Enforcement Action Dynamic Value Statements to learn more about Dynamic Value statement syntax.
Required Fields
These fields must be configured to run the Enforcement Set.
- Web server port (Default value: 443) - Specify the port to connect to in order to fetch the web server information.
- Number of Parallel Connections - specify the number of connections to be opened to control the performance of the scan. The default value for this field is 10.
- Compute Node Name - The Axonius node to use when connecting to the specified host. For more details, see Connecting Additional Axonius Nodes.
Additional Fields
These fields are optional.
HTTPS Proxy - Connect the adapter to a proxy instead of directly connecting it to the domain.
- Fetch Data from Qualys SSL Labs - Select to fetch data from Qualys SSL Labs.
- If enabled, the device is enriched with data from SSL Labs data, that includes information about the server host, its endpoints and indications on exposure to known SSL vulnerabilities, such as Heartbleed and POODLE.
- To enrich device with data from Qualys SSL Labs:
- Host name is required. If the device data does not include a host name, one of the following can be used:
- Device IP address, that must be a public IP address.
- Domain, if fetched as part of the SSL Certificate data.
- Device IP address, that must be a public IP address.
- Port 443 must be opened for Axonius to use the SSL Labs API.
- Host name is required. If the device data does not include a host name, one of the following can be used:
Gateway Name - Select the gateway through which to connect to perform the action.
For more details about other Enforcement Actions available, see Action Library.
Was this article helpful?