Bulk add devices in MDI exclusion lists

%3CLINGO-SUB%20id%3D%22lingo-sub-2354092%22%20slang%3D%22en-US%22%3EBulk%20add%20devices%20in%20MDI%20exclusion%20lists%3C%2FLINGO-SUB%3E%3CLINGO-BODY%20id%3D%22lingo-body-2354092%22%20slang%3D%22en-US%22%3E%3CP%3EHello%20everyone%2C%3C%2FP%3E%3CP%3EWe%20are%20looking%20for%20a%20way%20to%20add%20our%20internal%20security%20scanners%20(several%20hundreds)%20to%20MDI%20exclusion%20lists.%20(For%20example%20%3CEM%3EAccount%20Enumeration%20Reconnaissance%3C%2FEM%3E)%3C%2FP%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3ESeveral%20problems%20came%20up%3A%3C%2FP%3E%3CUL%3E%3CLI%3E%3CP%3EThe%20interface%20does%20not%20seem%20to%20support%20bulk%20adding%2C%20which%20is%20not%20only%20a%20problem%20to%20add%20hundreds%20of%20devices%20in%20one%20policy%2C%20but%20also%20when%20it%20comes%20to%20add%20this%20list%20to%20several%20MDI%20policies.%3C%2FP%3E%3C%2FLI%3E%3CLI%3E%3CP%3EOne%20given%20device%20seems%20to%20match%20several%20objects%20(up%20to%205%20duplicates%20entities).%3CBR%20%2F%3EWhen%20trying%20to%20add%20a%20device%20in%20one%20policy%20exclusion%20list%20(which%20would%20take%20some%20time%20to%20copy-paste%20one%20by%20one)%2C%20I%20would%20actually%20have%20to%20add%201%20to%205%20entities%20so%20that%20device%20is%20properly%20whitelisted.%3C%2FP%3E%3C%2FLI%3E%3C%2FUL%3E%3CP%3E%26nbsp%3B%3C%2FP%3E%3CP%3EWhat%20would%20you%20recommend%20to%20fix%2Fworkaround%20those%20problems%3F%3CBR%20%2F%3EThe%20best%20solution%20I%20can%20imagine%20would%20be%20to%20be%20able%20to%20create%20groups%20of%20devices%20(imported%20from%20a%20CSV%20file)%2C%20that%20we%20could%20then%20attach%20to%20the%20exclusion%20lists%20of%20needed%20policies.%3C%2FP%3E%3C%2FLINGO-BODY%3E
Occasional Visitor

Hello everyone,

We are looking for a way to add our internal security scanners (several hundreds) to MDI exclusion lists. (For example Account Enumeration Reconnaissance)

 

Several problems came up:

  • The interface does not seem to support bulk adding, which is not only a problem to add hundreds of devices in one policy, but also when it comes to add this list to several MDI policies.

  • One given device seems to match several objects (up to 5 duplicates entities).
    When trying to add a device in one policy exclusion list (which would take some time to copy-paste one by one), I would actually have to add 1 to 5 entities so that device is properly whitelisted.

 

What would you recommend to fix/workaround those problems?
The best solution I can imagine would be to be able to create groups of devices (imported from a CSV file), that we could then attach to the exclusion lists of needed policies.

0 Replies