What Do I Need to Know Before Requesting a SNAP Scan?

SNAP scans will only be authorized for system owners or their designees.  If you are not an owner of a system in NetReg, the ISO will contact a system owner to see if you are a designee.  If an unauthorized individual submits a request for a system owner, it will be considered a breach of the Acceptable Use Policy for UT and the appropriate governing body notified (Human Resources or Student Judicial Affairs).

SNAP scans can take a varying amount of time to complete depending on multiple system characteristics.  For instance, systems protected by a host-based firewall can take several hours to scan.

SNAP does not scan systems protected by a centrally-managed firewall.  Requests for systems protected by a centrally-managed firewall will be denied, or if approved, will return no results.  To request a scan for these machines, you will need to request a Risk Assessment consultation with ISO.

For worst-case results, submitters should disable any host-based firewalls for the duration of the scan.  Systems protected by a host-based firewall will often give the appearance that they have not been scanned (0 findings, etc.)

Reports from SNAP scans essentially provide a blueprint for points of entry into a system and possible compromise vectors. This information should be regarded by submitters as confidential information and should be protected as such.