Run a Vulnerability Scan
Take the following steps to set up and run your first software vulnerability scan.
1 Optionally define a server group to scan
If you have not already installed Halo agents on your servers and organized them into groups along functional and architectural lines, you can do so now. For installing agents, see the Install Linux Daemons page or the Install Windows Daemons page in the Halo Portal; for assembling server groups, follow the instructions in the section Setting Up Server Groups in the Halo Operations Guide.
Note that it is not required to define server groups in order to run vulnerability scans. Automatic vulnerability scans always apply to all servers that have active Halo agents, not to any particular group or groups.
Nonetheless, it may be convenient to select a specific server group when running a manual scan. And if it is a group of similarly configured servers, vulnerabilities detected in one server are likely to be found across the whole group.
2 Execute a manual scan
For a manual scan, you can choose to scan all of your servers, all of the servers in a single server group, or a subset of the servers in a server group.
Click the Software icon ( ) on the Halo Dashboard and then select All Servers or some other server group. Use the checkboxes to select all servers in the group or one or more individual servers. Then choose Launch Scan from the Actions menu to run the scan.
// <![CDATA[ var pdfTitle="Software Vulnerability Assessment"; var pdfURL="http://www.cloudpassage.com/document_images/SVA_Guide/software_vulnerability.pdf"; specifyPDF(pdfTitle, pdfURL); // ]]>