Help
FortiNAC
NOTE: FortiNAC is now named FortiNAC-F. For post-9.4 articles, see FortiNAC-F. FortiNAC is a zero-trust network access solution that provides users with enhanced visibility into the Internet of Things (IoT) devices on their enterprise networks.
FortiKoala
Staff
Staff

Created on ‎09-28-2018 07:14 AM

Article Id 192575

Technical Tip: Clear scan failures for hosts marked 'At Risk'

Description
This article provides methods to mark 'At Risk' hosts as 'Safe'.

This may be required due to various circumstances:
  • Hosts failed an improperly configured scan
  • A Host Record marked At-Risk is deleted.  After recreation of record, the host is still marked At-Risk.  Deleting a Host Record from the database does not delete the host's scan results.  Therefore, after deletion when the host record is recreated, it may be marked as At-Risk if there are scan failures pending.

Scope
Version: 8.x

Solution
If a scan was incorrectly configured, modify the scan and save.  Otherwise, hosts will be isolated again upon the next scan.

For details regarding scans and scan parameters, refer to the Administration Guide.

Mark Individual Host Record as "Safe" without re-running the scan(s)
Manually clear the scan failures:
1.  Navigate to Hosts > Hosts View.
2.  Right-click on the host record and select Host Health.
3.  Set the Status to Initial for each scan in the list.


Mark All Host Records as "Safe"
Clears all host records in database currently marked "At-Risk" (regardless of reason)
1.  Navigate to System > Settings > Control > Quarantine.
2.  Next to Set all hosts 'Risk state' to 'Safe'  click Apply.

Labels:
299
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.