Overview

This guide describes how to create a scan in beSECURE using two different methods.


Method 1: Create New Scan Wizard

  1. Log in to beSECURE.
  2. In the upper-left corner of the Home page, select DevOps.
  3. Select Create New Scan.
  4. In the Scan Name box, enter a name for the scan.
  5. In the Range box, enter the IP address(es) and/or hostname(s) to scan. If you enter multiple entries, separate each with a comma (for example, 192.168.0.0, 192.168.0.1).
  6. In the Organization box, select from the organizations you've registered with your account.
  7. In the LSS box, select your local scanning server (if you've deployed one) or select an integrated cloud option.
  8. To perform web scans on the application layer (that is, the 7th OSI layer), leave the Create Web Scan checkbox selected. 
  9. In the Contact box, select which contact in your account will receive notifications regarding the scan.
  10. All Notifications are selected by default. If you don't want the Contact to receive a notification, clear its checkbox.
  11. In the Schedule box, select when you want the scan to run.
  12. For Routine, select the corresponding frequency you want the scan to run based on your Schedule setting.
  13. Select Create to save your settings and schedule the scan.


Method 2: Scan Details

  1. Log in to beSECURE.
  2. In the upper-left corner of the Home page, select DevOps.
  3. Select Scans > Scans List.
  4. Scroll to the bottom of the page, and then select the Newbutton.
  5. On the Settings > Main tab, do the following:
    1. In the Scan Name box, enter a name for the scan.
    2. In the LSS box, select your local scanning server (if you've deployed one) or select an integrated cloud option.
    3. In the Organization box, select from the organizations you've registered with your account,
    4. In the Hostname / IP Address Range box, enter the IP address(es) and/or hostname(s) to scan. If you enter multiple entries, separate each with a comma (for example, 192.168.0.0, 192.168.0.1). Alternatively, select Import to upload a list of hostnames/IP addresses from a comma-separated values (CSV) file.
  6. Select Create to save your settings so far.
  7. Select the Authentication tab.
  8. Choose how to authenticate by either selecting from credentials stored in your account, or manually enter a username and password. You can optionally enter a domain in the Windows Domain box.
  9. If your authentication requires SSH, set that by way of the Host List and Add New Host boxes.
  10. Select the Hostname / IP Address Range tab.
  11. Optionally, select Exclude and enter any IP addresses and/or hostnames to exclude from the scan.
  12. Select the Additional Settings tab, and then do the following:
    1. By default, Ping is selected. Clearing this checkbox will cause the scan to skip the first phase where it attempts to detect live hosts in the range provided. This causes the scan to run on hosts that do not answer Scan Setting ping and do not listen to standard ports. This is beneficial when scanning high security Scan Settings like a DMZ. However, unchecking this box may also cause the scan to run much longer. This is because all of the possible Scan Settings in the range will be scanned, even if there are no actual machines configured to that IP address.
    2. In the Port Range box, enter the ports you want to scan. To scan all ports, select Full Port Range.
    3. In the Exclude Ports box, enter the ports to exclude from the scan.
    4. In the Tests to Exclude box, enter the tests you want to exclude from the scan (results will update as you type).
  13. Select the Permissions tab.
  14. From the Available list, select which users to assign to the scan.
  15. Select the Reporting tab, and then do the following:
    1. In the Contact Person box, select which contact in your account will receive notifications regarding the scan.
    2. All Notifications are selected by default. If you don't want the Contact to receive a notification, clear its checkbox.
    3. In the Customization Name box, select from any preexisting reports in your account, or select Newto add a new report. If you select New, do the following:
      1. In the Report Name box, enter a name for the report.
      2. In the Format box, select the format for the report.
      3. In the Report Type, select the report type for the report.
      4. If you selected PDF as your Format, you can optionally enter a password for the PDF in the PDF User Password box.
      5. In the Report Style box, select the style for the report.
  16. Select the Other tab.
  17. In the Comment box, optionally enter a note regarding the scan.
  18. Select Save to save your settings and add the scan to the Scan List.