Please Note: This guide is for Nipper (v2) only.
The New Report Wizard looks like this:
As you can see, the most recently added device is shown, along with the same options to add additional devices as previously discussed. You can add multiple devices if you wish to generate a multi device report.
Each device also has the tool icon and the remove device icon next to it. Naturally, the bin icon simply removes the device. Clicking on the pencil icon brings up the following menu:
You will see in this case (as is normal) Nipper has automatically detected the device type. The General tab allows you to add further details as per below.
Device Type: Used for manually setting the device type. Please note that, if this is altered from the device type identified by Nipper from the config file, audit findings may not be 100% accurate.
Hostname: Name of the network device
Device Model: Model of the network device
OS Version: Operating System version of the network device (to major/minor level only i.e. 8.4 rather than 8.4.23)
Apply version number to virtual devices: Used to push manual amendments on this page onto virtual device for audits.
The Audit tab includes the following functionality:
Include in network filtering audits: Enabled by default. Unticking will remove filtering audit checks from the reports.
Device is located at a network boundary: Enabled by default. This is used in the IDS (Intrusion Detection Systems) check as a guard around the add Unicast RPF Issue.
The Interfaces tab is mainly utilized for STIG audits:
Interface Classification: This is used in the STIG audit type to stop Nipper prompting for manual interface information.
When you have finished making any changes you need here, click OK to return to the New Report Wizard.
Once you have added all the devices you wish to audit, and modified them if required, clicking Next in the New Report Wizard will take you to the Reporting Options menu:
As you can see, the different report types are listed, with a brief description of what each report contains. Each report has a check box which determines whether it will be included in your final report, an up/down arrow allows you to determine the report sections position in the larger report and there is also a ‘Settings’ button for selecting advanced options.
Once you have chosen your reporting options, click Next to proceed. The next screen may allow you to run a comparison against a previous report:
This screen will appear if you have Security Audit or Raw Change Tracking selected in Reporting Options, and we will return to how to do this later in the Guide.
Click Next again and you will now generate your first report, like so:
You will see the time taken to generate the report is displayed. This is often extremely quick, although it can take longer depending on what options are selected.
You may now like to take the time to read through the report and see the issues highlighted.