Get Started with Qualys VSA Deployment in Azure-Stack

You can now scan your Microsoft Azure Stack instances and on-premises assets within the Qualys Cloud Platform. Once deployed, this scanner functions as a standard Virtual Scanner and can scan based on an IP address or CIDR block. To learn more about Microsoft Azure Stack, refer to Azure Stack.

Prerequisites

For deploying Qualys Virtual Scanner in Azure Stack, the following pre-requisites must be met:

  • Must have an active Qualys subscription.
    Contact Support or sign up on the Qualys website if you do not have an active Qualys subscription.
  • Must have a Scanner personalization code (14 digits) from your Qualys account. Refer to Generate Personalization Code.
  • There must be proper connectivity between Qualys Virtual Scanner Appliance VM and the Qualys Cloud Platform over HTTPS port 443.

Manage Instances

While managing the instance, you are not allowed to do the following actions:

  • Instance Snapshots or Cloning Not Allowed

    Using a snapshot or clone of a virtual scanner instance to create a new instance is strictly prohibited. The new instance does not function as a scanner, and all configuration settings and platform registration information are lost. This could also lead to scan failures and errors for the original scanner.

  • Moving or Exporting Instance Not Allowed

    Moving or exporting a registered scanner instance from a virtualization platform (HyperV, VMware, XenServer) in any file format to the Microsoft Azure Stack platform is strictly prohibited. Doing so can break scanner functionality and permanently lose all its settings.

Limitations

The following features are not supported and are disabled in all cloud (private and public) platforms:

  • WAN/Split network SETTINGS - The 'WAN Interface' option for split network settings is not available from the Scanner UI/console. Only LAN/single network settings from Cloud UI, used for both scanning and connecting to Qualys servers, are supported.
  • NATIVE VLAN - The 'VLAN on LAN' option for configuring Native VLAN is not available from the scanner UI/console.
  • STATIC VLAN (IPV4 AND IPV6) - The Qualys UI does not offer the 'VLANs' option for configuring static VLANs.
  • STATIC ROUTES (IPV4 AND IPV6) - The Qualys UI does not offer the Option to configure 'Static Routes'.
  • IPV6 ON LAN - The Qualys UI does not offer the option to configure 'IPv6 on LAN'.

Quick Start Steps

  1. Generate Personalization Code.
  2. Deploy Qualys Virtual Scanner Appliance from Custom Image.
  3. Check Scanner Status.
  4. Update Proxy Settings Upon Deployment.

If you use Private Cloud Platform, you can copy the image directly from Qualys cloud storage to your Azure account. For more details, refer to  Private Cloud Platform Users.

Related Topic

Manage Instances

 

© 2024 Qualys, Inc. All rights reserved. Privacy Policy.