Technical Tip: Attempting to Scan Devices without Persistent Agent marks Host as 'at risk'
Description
This article indicates that attempting to Scan Devices without Persistent Agent marks Host as 'at risk'.
Scope
FortiNAC.
Solution
Issue: Attempting to Scan Devices Without Agent Marks Host "at risk."
If a host does not have the Persistent Agent installed, and "Scan Hosts" is selected in Host view for that host, it will be marked "at risk". In Host Health, the applicable scan shows a Failed status. However, there is no record of scan results in the Host Health History view
Selecting 'Scan Hosts' evaluates the selected host in Host View with the scan that applies at that moment (based on configured Endpoint Compliance policies). The host must be online and must have a Persistent Agent. If the host is online but does not have a Persistent Agent, it is marked "at risk" for the Scan that most closely matches the host at the moment. Since a scan was not able to be completed (due to the lack of an agent), the Host Health History view does not list a scan result.
Solution: Install the Persistent Agent on the Host.
If a host does not have the Persistent Agent installed, and "Scan Hosts" is selected in Host view for that host, it will be marked "at risk". In Host Health, the applicable scan shows a Failed status. However, there is no record of scan results in the Host Health History view
Selecting 'Scan Hosts' evaluates the selected host in Host View with the scan that applies at that moment (based on configured Endpoint Compliance policies). The host must be online and must have a Persistent Agent. If the host is online but does not have a Persistent Agent, it is marked "at risk" for the Scan that most closely matches the host at the moment. Since a scan was not able to be completed (due to the lack of an agent), the Host Health History view does not list a scan result.
Solution: Install the Persistent Agent on the Host.