Deploy Threat Scanners

Threat Scanners are used to fetch real-time updates on your configured cloud assets. Deploying Threat Scanners allow you to obtain the necessary keys to get started with Cloud Detection and Response.

Let's deploy your first Threat Scanner.

  1. Navigate to the Configure tab in TotalCloud.
    The Configure tab displays your available CSPM connectors, and the Threat Scanners.
  2. Navigate to Threat Scanners.
  3. Click Create Deployment to begin your scanner deployment.
    You can find three input fields in the Create Deployment screen.

    1. Provide the name of the deployment. The name must be of 25 characters utmost. It must start with 'aws-' and proceed with alphanumeric characters less than 25 characters. Example, aws-56A7E444
    2. Provide the account ID of the cloud provider account you want to deploy Threat Scanners on.
    3. Select the region where the threat scanner must be deployed on.

    4. Click Create. 

    5. After creating a deployment, the CDR key is visible. Store this key for future use.

  4. Obtain CDR AMI ID from the Qualys Team. 

 The AMI ID is region-specific; Get the AMI specific to your region of deployment.

Once you have created your first deployment, the option to download scripts appear. This downloads the Terraform templates to set up CDR on your network. 

5.   Click Download Scripts. Once the scripts are downloaded, move to the next step.

Cloud Detection and Response Deployment Essentials

The Threat Scanner tab contains all the essential resources to onboard CDR on your cloud network. Refer below to understand the essentials.

Download Scripts

Once you have created your first deployment,  the option to download scripts appear. This downloads the Terraform templates to set up CDR on your network. 

Click Download Scripts.

Once you have downloaded the scripts, extract the zip file to begin activating your CDR subscription. 

Registration Key

The Registration Key is available to you after your first deployment. The key is unique for each cloud provider. This key is required to set up the CDR connector.

Insight Key

The insight key is a global key to run the Insight API.

Now that you have deployed your threat scanner and downloaded the scripts. Proceed setting up Cloud Detection and Response.

 

 

© 2024 Qualys, Inc. All rights reserved. Privacy Policy.