RMR Frequently-Asked Questions (FAQs)

Privacy/Security

Who has access to the vulnerabilities detected by RMR?

All information about your Active Directory network, and any vulnerabilities detected within, never leaves the machine performing the scan. Javelina Software never gains access to this information, and has no ability to remotely connect to your network through RMR to see it.

Licensing

How many licenses do I need for RMR?

RMR is licensed based on the number of objects we’ll analyze in your scan area. This includes all of the users, computers, groups, organizational units, site links, domains, trusts, and foreign security principals. The easiest way to confirm the number of licenses you require is to open RMR and reference the “Domain Objects” field in the Status pane of the Home view.

What happens if I have more objects in my domain than I have licenses?

RMR scans will abort prematurely once the number of licenses has been reached, causing you to miss issues in the unscanned objects. The best way to ensure your RMR scans pick up all issues present in your network is to have enough licenses to cover all the objects in your scan area.

Running Scans

How long do RMR scans take?

We’ve worked hard to make RMR scans as quick as possible. The total length of the scan depends on many factors including the ruleset being evaluated, the size of the scan area, and the hardware of the machine performing the scan. Installed on a machine that meets RMR’s minimum requirements, and run during a time of low to moderate network activity, you can expect RMR to perform a Full Scan at a rate of at least 500 objects/minute.

Scan Results

I’m getting a lot of scan errors for computers that I know are reachable. What gives?

Make sure that the computers in question are actually on at the time of your scan. By default, RMR includes a daily scheduled scan at midnight. Although it is generally a good idea to schedule scans during times of low network activity, you might have to balance that desire with picking a time when target computers are guaranteed to be turned on.

I got a really low Scan Score. What does this mean?

The Scan Score is calculated by the percentage of your objects that passed each rule, weighted according to the severity of the rule. A low score in a Full scan or Quick scan often indicates that you have a configuration affecting all users that fails a high severity rule. Take a closer look at your scan report to see which high-severity rules have generated a lot of issues and address those first to see quick Scan Score improvement.

I got a really high Scan Score. What does this mean?

The Scan Score is calculated by the percentage of your objects that passed each rule, weighted according to the severity of the rule. Generally speaking, a higher scan score is better. A score of 100 does not indicate a perfectly secure network, but rather that RMR found no vulnerabilities with the scanned objects against the selected ruleset.

Fixing Detected Issues

I’ve got 10,000 issues found!? Where do I even start?

Start with the low-hanging fruit. Check your results for rules with a large number of violations. These are often global configurations that apply to every user in the domain (like a dangerously lenient password policy). Address the remaining issues in order of severity, starting with those rules marked “High”.

Some of the rules have no recommended fix?

Every rule evaluated by RMR has a recommended fix, but some of these fixes can only be performed manually. These rules with “manual” recommended fixes will display in the rule grid with a blank in the Recommended Fix column.

Can I undo a fix that was performed automatically by RMR?

Almost every action that RMR performs can be instantly undone from the Issues tab of the Scan Results dialog. Simply select the issues with unwanted actions listed, and click the Undo button. There are two exceptions: RMR cannot undo password resets, since we don’t have access to the old password. And RMR cannot undo sending an email, for obvious reasons.