Hey @zac_youtz no problem appreciate you help.
For anyone who might find it useful this is the sql i created to extract the data around authentication, you can run this via the SQL report within nexpose and it can be ran against a site, asset group (dynamic or static), single IP. It should be useful to pull out authentication results for groups of assets that is our aim with it, i generally pull it out and pivot it in excel or use something like tableau if you have that.
The SQL pulls the following information Site, IP Address, Host Name, Service (cifs, ssh etc), Protocol (TCP , UDP etc), Port , Access Level (login info successful, failed etc), Scan start date
Above is the info we required but you could add extra columns as you require.
SELECT dsite.name “Site”, da.ip_address as “IP Address”, da.host_name as “Host Name”, dos.family as “OS Type”, ds.name as “Service”, dp.description as “Protocol”, dasc.port as “Port”, dcs.credential_status_description “Access Level”, fa.scan_started “Scan Date”
FROM dim_asset da
JOIN fact_asset_scan_service fass using (asset_id)
JOIN fact_asset fa using (asset_id)
JOIN dim_operating_system dos using (operating_system_id)
JOIN dim_site_asset dsa using (asset_id)
JOIN dim_site dsite using (site_id)
JOIN dim_service ds using (service_id)
JOIN dim_protocol dp using (protocol_id)
JOIN dim_credential_status dcs using (credential_status_id)
JOIN dim_asset_service_credential dasc using (asset_id)
GROUP BY dsite.name, da.ip_address, da.host_name, dos.family, ds.name, dp.description, dasc.port, dcs.credential_status_description, fa.scan_started
ORDER BY da.ip_address DESC