Scan
from the left menu.This help describes how to launch vulnerability scans and compliance scans. In general, when launching a scan you: 1) provide a scan title, 2) select scan options, 3) specify the target hosts to be scanned, and 4) click Launch. The status of your scan appears in a second browser window. Close the browser to let the scan run in the background. You can check the status of your scan at any time on the scan history list and view scan results once the scan is finished.
Is this your first scan? See the links below for important steps to take before launching your scan:
Before launching vulnerability scans
Before launching compliance scans
Launch vulnerability scans to analyze the security of your network devices and generate a comprehensive report outlining the detected vulnerabilities, potential vulnerabilities, and information gathered data. You can launch a scan on one or more asset groups, IP addresses and IP address ranges.
1. Select
Scan
from the left menu.
2. Go to New > Scan > Vulnerability. The Launch Vulnerability Scan page appears.
3. Under General Information, provide the following details.
Title. Enter a title for the scan task. The title will appear in the scan complete email and the scan history list for quick identification.
Option Profile. Select an option profile to apply to the scan. Configuration settings defined in the profile will affect your scan results. The default option profile is selected automatically. This profile is recommended best practice to get started. To make another selection, do one of the following: 1) start typing the option profile title in the field provided and then select an option profile from the list of option profiles whose titles match what you type, or 2) click the Select link to view all available option profiles, including option profiles already in your account and option profiles you can import from the Library.
Scanner Appliance. (Appears only when there are scanner appliances in your account) Select a scanner option: Default (for default scanner in asset group), External (for external scanners), All Scanners in Asset Group (for scanner parallelization), or a scanner appliance name. For details on available options, see Scanner Appliance Selection for Scans.
4. Under Target Hosts, select asset groups and/or IP addresses to scan. Multiple entries are comma separated. When you scan an asset group, all hosts defined in the group are included in the scan target, including IP addresses specified on the IPs tab and hostnames specified on the DNS and NetBIOS tabs, if applicable. You have the option to exclude certain IPs/ranges from the scan. To do so, enter IPs/ranges in the Exclude IPs/Ranges field. No scanning traffic will be sent to excluded IPs.
5. Click Launch.
Note: The KnowledgeBase appears after you click Launch if the selected option profile has the "Select at runtime" option enabled. Select the check box next to each vulnerability you want to include in the scan task, then click OK to start the scan.
If the compliance module is enabled for your subscription, then you can also launch compliance scans. Compliance scans determine whether hosts are compliant with user-defined policies. You can launch a compliance scan on hosts that have been defined as compliance hosts for your subscription.
Important: You cannot launch a compliance scan until at least one compliance profile is available in your account. See Managing Compliance Profiles.
1. Select
Scan
from the left menu.
2. Go to New > Scan > Compliance. The Launch Compliance Scan page appears.
3. Under General Information, provide the following details:
Title. Enter a title for the scan task. The title will appear in the scan complete email and the scan history list for quick identification.
Compliance Profile. Select a compliance profile to apply to the scan. Configuration settings defined in the profile will affect your results.
Scanner Appliance. (Appears only when there are scanner appliances in your account) Select a scanner option: Default (for default scanner in asset group), External (for external scanners), All Scanners in Asset Group (for scanner parallelization), or a scanner appliance name. For details on available options, see Scanner Appliance Selection for Scans.
4. Under Target Hosts, select asset groups and/or IP addresses to scan. Multiple entries are comma separated. When you scan an asset group, all compliance hosts defined in the group are included in the scan target, including IP addresses specified on the IPs tab and hostnames specified on the DNS and NetBIOS tabs, if applicable. You have the option to exclude certain IPs/ranges from the scan. To do so, enter IPs/ranges in the Exclude IPs/Ranges field. No scanning traffic will be sent to excluded IPs.
5. Click Launch.