Assessing devices that allow risky protocols

IBM QRadar Risk Manager evaluates a question and displays the results of any assets in your topology that match the test question. Security professionals, administrators, or auditors in your network can approve communications that are not risky to specific assets. They can also create an offense for the behavior.

1. Click the Risks tab.
2. From the navigation menu, click Policy Monitor.
3. From the Group list, select PCI 1.
4. Select the test question Assess any devices (i.e. firewalls) that allow risky protocols (i.e. telnet and FTP traffic - port 21 & 23 respectively) from the internet to the DMZ.
5. Click Submit Question.