1. home icon for breadcrumbs >
  2. Deploying Sensors >
  3. Deploying Scanners in Azure Platform >
  4. Deploying Qualys Scanner Appliance >
  5. Deploy Qualys Scanner from Azure Portal

Deploy Qualys Scanner from Azure Portal

Follow these steps to deploy a virtual scanner:

  1. Find and select Qualys Virtual Scanner Appliance in the Marketplace and click Create to deploy the scanner.

     Only utilize the Qualys Virtual Scanner Appliance image from the Azure Marketplace or the Signed URL provided by Qualys. Images downloaded from the Qualys UI do not function correctly on Azure Cloud, even with disk format conversions.

    create_scanner_appliance

  2. Enter the required information.

  3. Click Next: Disks+Monitoring:

    Subscription

    Resource group:

    To learn more about resource groups, visit Azure documentation.

    Region

    Virtual machine name: Virtual machine name must be between 1 and 64 characters long and may contain alpha-numeric characters, dots '.' and hyphens '-' only. It must start and end with an alpha-numeric character.

    Size: Select a VM size to support the workload you want to run; select a size where the number of CPUs to allocated RAM ratio is 1:2, e.g., 4 CPUs and 8 GB RAM, or 1:3 ratio, depending on the platform’s availability.

    - Click Next to Disks tab.

     Enabling boot diagnostics is not mandatory for deploying Qualys Virtual Scanners, but it is highly recommended to facilitate troubleshooting scanner issues. A storage account is required to enable boot diagnostics.


    OS Disk Type: Select Premium so that Boot Diagnostics can be enabled.

    Click Next to Networking tab.

    Virtual network: Select existing or create a new virtual network.

    Click Monitoring tab.
    Enable Boot diagnostics by selecting Enable with managed storage account(recommended).

    Enable boot diagnostics to troubleshoot issues with your scanner. Diagnostics include log output from the scanner. To learn more about Boot diagnostics, refer to Azure documents.

    Click Advanced tab.

    Click checkbox Enable user data.
    Add PERSCODE and PROXY_URL for proxy configuration in User Data field box.


     

    PERSCODE (mandatory field): 14-digit Personalization Code obtained from Qualys

    PROXY_URL (optional field): used to configure the Qualys Scanner to use SSL proxy for all outbound communication with the Qualys Cloud Platform. We support both IP and FQDN for the proxy server configuration.

    Provide optional proxy configuration in one of the following formats:
    <host>:<port> (No auth proxy)
    <user>:<password>@<host>:<port> (Auth proxy)
    <domain\user>:<password>@<host>:<port> (Auth proxy with domain user)

    If validation passes, click the Create.

    If validation fails, correct the fields that are displayed in red. 

  4. Once Azure completes the deployment, click Go to Resource to access the scanner deployment in your resource group.

  5. Your scanner updates and connects to the Qualys Cloud Platform.
    This process may take some time, depending on location. Once connected, you can use your Azure scanner from the Qualys Cloud Platform like any virtual scanner appliance. 

© 2024 Qualys, Inc. All rights reserved. Privacy Policy.