Internal Scanning using Virtual Scanner Appliance

Scanning with a pre-authorized scanner appliance involves following a sequence of steps.

1. Create a dynamic tag with Cloud Asset Search filters under AssetView app based on your requirements.

   For example:

   • All running VMs in your Qualys Subscription: azure.vm.state: RUNNING
   • All running VMs in your Azure Subscription: azure.vm.subscriptionId:<your Azure Subscription Id> and azure.vm.state:"RUNNING" 
   • All running VMs in a location: azure.vm.state:"RUNNING" and azure.vm.location:westus
   • All running VMs in a resource group: azure.vm.state:RUNNING and azure.vm.resourceGroupName:testRG
2. Extract IP addresses of machines returned by tags created in above step. You can extract it using Download or API Query to Host Assets.
3. Add these IP addresses grouped as Asset Groups or individually as Host Assets under Assets tab in VM/VMDR.
4. Configure OS Authentication records.
5. Now, let us start scanning. Go to VM/VMDR > Scans > Scans > New > Scan (or Schedule Scan).

   

6. Identify your scan target.

7. Click Assets to select a combination of asset groups and IP addresses to scan, or click Tags to select one or more asset tags to scan.

   

8. Click Launch, and you are done!