Network Scanner Helper Document
1. Home
The home page will list the designated scanners and associated scan config settings, scan policies, and the status. Following is the list of parameters present on the home page.
Parameter Description
Scanners It will display list of designated network scanner devices. You can initiate a scan by clicking on the Scan Now icon.
Scan Config It will display a list of scan configs assigned to the scanners. The drop-down menu will list all the available scan configs, which can be selected and assigned to the scanner.
Scan Policy It will display a list of scan policies assigned to the scanners. The drop-down menu will list all the available scan policies, which can be selected and assigned to the scanner.
Status Device Status icon - This icon shows the status of the device - Active or Inactive.
Network Scanner Status icon - This icon shows the scan status of Network Scanner.
Information icon - The last scan information is displayed, on click of the "i" icon.
1.1 Create New Scan Profile
Create a new scanner by clicking on the Create New Scanner option from the Home page. Complete the following three steps to create a new scanner: Scanner Selection, Scan Config, and Scan Policy.

a) Scanner Selection

Parameter Description
Scanner Type Select the preferred scanner type from the drop-down menu:
  • Designate agent to perform network scan: Select this option if the agent is already installed on the device and you want to upgrade this device as a network scanner.
  • Setup new agent to perform network scan: Select this option if you want to deploy the agent in the device and then upgrade it as a network scanner.
Choose a Device Select a device from the drop-down menu to designate as a Network Scanner.

b) Scan Config

Parameter Description
Name Specify the name for the scan config.
Targets Specify the comma-separated list of target IP addresses or domain names for scanning. This member is an IPv4 address. This field supports CIDR format and domain name as inputs.
E.g.: 192.168.1.1 or 192.168.1.1/32 or 192.168.1.1-10
Exclude List Specify a comma-separated list of target IP addresses to be excluded from the scan. This member is an IPv4 address.
E.g.: 192.168.1.5,192.168.1.6
Select Ports

Specify a comma-separated list of ports to scan. Users can select default ports, or they can customize their own set of TCP/UDP ports based on the configuration.
Select Ports: Specify the ports to be scanned. By default, the Default Ports option is selected. Click on the drop-down menu to select the following default ports options.

  • Top 1000
  • Top 500
  • Top 100
  • None

Click on the help icon next to Select Ports for more details on the above options.
Users can manually provide the ports to scan by clicking on the Enter Custom Ports check box.
Enter Custom Ports: Click on the check box to provide the TCP and UDP ports manually.

  • TCP Ports: Specifies a comma-separated list of TCP ports to scan. E.g.: 80 or 21,80 or 1-65535 or 1-1023,3389
  • UDP Ports: Specifies a comma-separated list of UDP ports to scan. E.g.: 80 or 21,80 or 1-65535 or 1-1023,3389

Scan Schedule Schedule scan on a daily, weekly, and monthly basis. By default, the None option will be selected.
  • None: A network scan has to be manually triggered.
  • Daily: Every day at a specific HH:MM time, a network scan will be initiated.
  • Weekly: On specific day/s every week, at HH:MM time, a network scan will be initiated.
  • Monthly: On specific day/s of every month, at HH:MM time, a network scan will be initiated.

c) Scan Policy

Item Description
Choose Policy Select the policy to be assigned from the drop-down menu. By default, the Default Policy is selected.
Once the new scanner is created successfully, the Home page will list the newly added scanner, associated scan config settings, and scan policy.
2. Scanners
This page displays a list of designated scanners and endpoint devices. The available endpoint device can be designated as a network scanner.
2.1 Designated Scanners
This section lists the designated network scanners. It will display the Host name, IP address, and last scanned date and time of the scanner. Users can perform the following actions from this section:
  • Scan Now button: The scan is initiated by clicking the Scan Now button. Once the scan started, the Abort Scan button will appear. Users can stop the scan by clicking on the abort scan button.
  • Device Status icon: Shows the status of the device - Active or Inactive.
  • Network Scanner Status icon: Display the status of the network scanner. Following is the list of scan statuses:
    • Upgrade waiting - Need to upgrade device as a network scanner
    • Upgrading - Upgrading device as a network scanner
    • Upgrade failed - Failed to upgrade device as a network scanner
    • Scan waiting - Need to perform a network scan
    • Scanning - Network scan is on-going
    • Scan failed - Network scan has failed
    • Abort waiting - Need to perform network scan abort
    • Scan aborted - Network scan is aborted
    • Idle - Device is idle (Not performing any network scan activity)
  • Information icon: On click on the icon, you will get the last scan information.
  • Delete icon: Remove the network scanner device from the designated scanners list.
2.2 Devices Available
This section shows the list of endpoint devices. The device information such as Host Name, IP Address, Mac address, Operating System, CPU, RAM, DHCP Status, Device Status, and the action column is displayed. Users can choose one or more devices by clicking the check box and click on the Designate button to designate them as a network scanner.
The search option is provided to list the devices. Users can also filter the devices by the subnets, family, group, operating system, and device status. By default, the "Show only recommended devices" filter option is selected that will list the recommended devices based on the below parameters:
  • One device per subnet
  • Server system
  • Desktop
  • Based on high CPU and RAM capacity
  • Device uptime
Note: Linux (32-bit) and Linux Alpine (32-bit and 64-bit) devices are not supported for upgrading as a Network Scanner.
3. Scan Config
This page lists all the scan config settings with a scan config name, description, targets, ports, and actions. Click on the Edit icon to edit the scan config settings and click on the Delete icon to remove the scan config from the list. Click on the New Scan Config icon to create a new scan configuration.
3.1 New scan config
Parameter Description
Name Specify the name for the scan config.
Description Specify the description about the scan config.
Targets Specify the comma-separated list of target IP addresses or domain names for scanning. This member is an IPv4 address. This field supports CIDR format and domain name as inputs.
E.g.: 192.168.1.1 or 192.168.1.1/32 or 192.168.1.1-10
Exclude List Specify a comma-separated list of target IP addresses to be excluded from the scan. This member is an IPv4 address.
E.g.: 192.168.1.5,192.168.1.6
Select Ports

Specify a comma-separated list of ports to scan. Users can select default ports, or they can customize their own set of TCP/UDP ports based on the configuration.
Select Ports: Specify the ports to be scanned. By default, the Default Ports option is selected. Click on the drop-down menu to select the following default ports options.

  • Top 1000
  • Top 500
  • Top 100
  • None

Click on the help icon next to Select Ports for more details on the above options.
Users can manually provide the ports to scan by clicking on the Enter Custom Ports check box.
Enter Custom Ports: Click on the check box to provide the TCP and UDP ports manually.

  • TCP Ports: Specifies a comma-separated list of TCP ports to scan. E.g.: 80 or 21,80 or 1-65535 or 1-1023,3389
  • UDP Ports: Specifies a comma-separated list of UDP ports to scan. E.g.: 80 or 21,80 or 1-65535 or 1-1023,3389

Scan Schedule Schedule scan on a daily, weekly, and monthly basis. By default, the None option will be selected.
  • None: A network scan has to be manually triggered.
  • Daily: Every day at a specific HH:MM time, a network scan will be initiated.
  • Weekly: On specific day/s every week, at HH:MM time, a network scan will be initiated.
  • Monthly: On specific day/s of every month, at HH:MM time, a network scan will be initiated.
4. Scan Policy
The scan policy is to run particular scripts to detect applications and vulnerabilities. Select a family and scripts based on the network. The scan policy page shows the specified name for the scan policy, description, and action columns. If the user has not created the scan policy, the default policy will be selected.
Item Description
Name Specify the name for the scan policy.
Description Specify the description about the scan policy.
Action Modify the scan policy by clicking on the Edit icon. Remove the policy by clicking on the Delete icon.

The import option is available to copy the policy from other organizations/accounts instead of creating a new policy. Click on the Import Policy icon - and select the organization, account, and policy to import.
To create a new policy, click on the New Policy icon.

4.1 New Policy
Complete the following three steps to create a new policy.
  1. Script selection: This section list scripts required to run vulnerability check. Choose a Family and Scripts based on the devices and applications in the network. Exclude the family and scripts which you don't want to run by unchecking the box. Users can apply filters to view only specific scripts. In addition, the search option is provided to search the scripts with multiple search options, along with the CVE and SVE number. Click on the Next button after selecting the scripts.
  2. Script Preferences: This section will display the global variables based on the script selection. Provide the WebApp path to run the scripts. Click on the Next button to provide basic information about the policy.
  3. Basic Information: Provide a scan policy name and description to identify and click on the Create Policy button.

Once the policy is created successfully, it will appear on the Scan Policy page.

5. Logs
Lists logs of all actions associated with the Network Scanner Feature. It will display detailed information such as Job code, Date, Organization, Account, User, and Message. If the audit logs are more, users can apply filters to view specific sections of the logs. Users can filter for Account, Users, Date range, and the number of lines you want to limit the log file.
Job Code Events
14000 Network Scanner Management
14001 Initiate Discovery Scan
14002 Add Discovery Scan Configuration
14003 Update Discovery Scan Configuration
14004 Delete Discovery Scan Configuration
14005 Upload Discovery Scan Data
14006 Failed to Upload Discovery Scan Data
14007 Add Network Scan Device
14008 Failed to Add Network Scan Device
14009 Updated Network Scan Device
14010 Failed to Update Network Scan Device
14011 Failed to Add Discovery Scan Configuration
14012 Failed to Update Discovery Scan Configuration
14013 Failed to Delete Discovery Scan Configuration
14014 Stop Network Scan
14015 Delete Device
14016 Failed to Delete Device
14017 Rename Network Scan Device
14018 Failed to Rename Network Scan Device
14019 Updated Device As Network Scanner
14020 Failed to Update Device As Network Scanner
14021 Removed Device As Network Scanner
14022 Failed to Remove Device As Network Scanner
14023 Initiate Network Scan
14024 Add Network Scan Configuration
14025 Failed to Add Network Scan Configuration
14026 Update Network Scan Configuration
14027 Failed to Update Network Scan Configuration
14028 Delete Network Scan Configuration
14029 Failed to Delete Network Scan Configuration
14030 Add Network Scan Policy
14031 Failed to Add Network Scan Policy
14032 Update Network Scan Policy
14033 Failed to Update Network Scan Policy
14034 Delete Network Scan Policy
14035 Failed to Delete Network Scan Policy
14042 Stop Discovery Scan
14043 Imported Network Scan Policy
14044 Failed to Import Network Scan Policy
14045 Assign Scan Configuration
14046 Failed to Assign Scan Configuration
14047 Discovery Scan Failed
14048 Network Scan Failed
14049 Unassign Scan Configuration
14050 Failed to Unassign Scan Configuration