Product manual

ManualsBrandsGFI ManualsSoftwareLanGuard, Add, 25-49IP, 1Y, ENG

221

222

223

224

225

226

227

228

229

230

GFI LanGuard 13 Utilities | 223

13.9 Command Line Tools

The command line tools enable you to launch network vulnerability scans and patch deployment

sessions as well as importing and exporting profiles and vulnerabilities without loading up the GFI

LanGuard management console. Use the information in this section to learn how to run patch

management functions using the following CMD tools:

Lnsscmd.exe

Deploycmd.exe

Impex.exe

13.9.1 Using Insscmd.exe

The ‘lnsscmd.exe’ command line target–scanning tool allows you to run vulnerability checks against

network targets directly from the command line, or through third party applications, batch files and

scripts. The ‘lnsscmd.exe’ command line tool supports the following switches:

lnsscmd <Target> [/profile=profileName] [/report=reportPath]

[/reportname=reportName] [/output=pathToXmlFile] [/user=username

/password=password] [/Email [/EmailAddress=EmailAddress]]

[/DontShowStatus] [/UseComputerProfiles] [/Wake] [/Shutdown

[/ShutdownIntervalStart=<hh:mm:ss>] [/ShutdownIntervalEnd=<hh:mm:ss>]]

[/?]

lnsscmd command switches

Switch Description

Target Specify the IP / range of IPs or host name(s) to be scanned.

/Profile (Optional) Specify the scanning profile that will be used during a security scan. If this

parameter is not specified, the scanning profile that is currently active in the GFI LanGuard

will be used.

Note

In the management console, the default (i.e. currently active) scanning profile is

denoted by the word (Active) next to its name. To view which profile is active expand

the Configuration tab > Scanning Profiles node.

/Output (Optional) Specify the full path (including filename) of the XML file where the scan results

will be saved.

/Report (Optional) Directory or full file name for the output scan report.

/ReportName (Optional) Name of the report to generate. If not specified, the report is saved with a default

name.

/User and /Password (Optional) Specify the alternative credentials that the scanning engine will use to authen-

ticate to a target computer during security scanning. Alternatively you can use the /Us-

eComputerProfiles switch to use the authentication credentials already configured in the

dashboard.

/Email (Optional) Send the resulting report by e-mail. The e-mail address and mail server specified

in Configuration > Alerting Options are used.

/EmailAddress (Optional) Dependent on /Email. Overrides the general alerting options and uses the spec-

ified email address.

/DontShowStatus (Optional) Include this switch if you want to perform silent scanning. In this way, the scan

progress details will not be shown.

/UseComputerProfiles (Optional) Use per computer credentials when available.

/Wake (Optional) Wake up offline computers.

Table 85: Insscmd command switches