Generating Credential Auditor Report

 

• A notification appears in the Inventory table against the firewall if it is configured with publicly known secrets.
• An Email notification is sent stating that one or more firewall in a particular tenant are using publicly known secrets. After an email notification is sent, another notification is sent only after one hour, even if additional publicly known secrets are reported during that time. However, notifications continue to appear on the Inventory page.

• If the password is changed from a firewall, the firewall goes Out of Sync in the Firewall Management. A publicly known secrets notification on the Inventory page will be displayed only after the firewall is synchronized with Firewall Management.

• If the Inventory page flags a firewall with publicly known secrets, the notification icon is removed after either:

  • Updating the secrets in Firewall Management and deploying the changes.
  • Updating the secrets directly on the firewall and performing a manual or automatic sync in Firewall Management.

You can generate a report for a specific tenant or All Tenants for all Gen firewalls. The Credential Auditor Report gives the details of the Firewall Name, Serial #, Tenant, Credential Type, and User Name or Policy Name.

To generate credential auditor report

1. Navigate to Manager View | Home > Firewalls > Inventory page.

2. Set the tenant level.

   This option is available at both All Tenants and at an individual tenant level.

3. Do one of the following:

   • Click the notification icon available in the Inventory page and click Generate Report.

     

   • Click More Options > Credential Auditor Report in the table header.

     

   The Credential Auditor Report will be downloaded in a .pdf format with details of the Firewall Name, Serial #, Tenant, Credential Type, and User Name or Policy Name.