|
|
Your IP assets are the internet-facing IP addresses and or ranges that must be scanned for PCI compliance. If you have domains that host in-scope PCI infrastructure, these domains must be added to your account. Go to Account > IP Assets to see the IPs in your account and to make changes to the list.
PCI network scans must be run on a quarterly basis against all of your Internet facing networks and systems that are in scope for PCI. Per the PCI Council's Program Guide, you are responsible for defining the in-scope infrastructure for the PCI network scan.
Go to Account > IP Assets. Use the buttons on the right side to make changes to your IP assets list. When you add and remove IPs, you'll see indicators in the IP Assets list identifying the status of your changes.
Tell me about removing IPsTell me about removing IPs
You should not remove an IP asset from your account if that asset processes, transmits or stores cardholder data. Once an IP is removed, it no longer will appear in your reports. It's possible to remove an IP only if no scan is currently running on the IP, the IP is not included in the target of a scheduled scan, and the IP is not included in a scan currently being imported to PCI (shared from the VM module).
Are you using Express PCI?Are you using Express PCI?
You do not have permission to add or remove IPs within the PCI module. You can add IPs following these steps: log in to the VM application, go to VM > Scans, select a completed PCI external scan from the scans list, and then click the Share button. Once shared you'll see the imported scan and its IPs in your account.
Perform a discovery scan on any IP range to identify live hosts (hosts that are currently active and connected to the Internet) and hosts that are in your account but not live. The discovery scan results give you workflows for adding and removing IP addresses.
Out of scope assets include IP addresses that were previously in-scope but removed from the subscription, and IP addresses discovered by the service as part of your in-scope infrastructure. The service discovers IPs by resolving domains to IP addresses and resolving external links to IP addresses. The total number of out of scope assets appears in your network report in the section "Attestation of Scan Compliance". Learn more