Create and Edit Sites

In this section you will learn how to create and configure sites. If you are a new user, you will learn how to create your first basic site. Experienced users can find information on more advanced practices and configurations.

Site configuration options

As part of creating or editing a site, configure your site using the options below.

Create a site

1. On the Home page, click Create and select Site to open the Site Configuration.
  1. On the Home page of the Security Console, click Create and select Site.

If you're editing a site, go to Sites and click the name of the site you want to edit.

2. On the Info & Security tab, name and describe your site, then assign user access.
  1. On the Info & Security tab, set your configuration options:
    1. Type a brief description of the site.
    2. Select a level of importance from the drop-down list:
      • The Very Low setting reduces the risk index to 1/3 of its initial value.
      • The Low setting reduces the risk index to 2/3 of its initial value.
      • High and Very High settings increase the risk index to twice and 3 times its initial value respectively.
      • A Normal setting does not change the risk index. The importance level corresponds to a risk factor used to calculate a risk index for each site. See Adjusting risk with criticality.
    3. Add business context tags to the site. Any tag you add to a site will apply to all of the member assets. For more information and instructions, see Applying RealContext with tags.
    4. Click Organization to enter your company information. These fields are used in PCI reports.
    5. Select users who can access the site. For more information on managing user access, see Giving users access to a site.
3. On the Assets tab, manually add IP addresses or ranges or use dynamic discovery.
  1. On the Assets tab, add assets manually or through a discovery connection.
    1. Enter the name, IP address, or IP range to specify which assets to include in the site.
    2. (Optional) Add an asset group.
    3. (Optional) Add assets by connection.
4. On the Authentication tab, configure authentication and set scan credentials.
  1. To configure your authentication and set credentials:

    1. Click Authentication > Add credentials > General. Add a name and description. This name helps you easily identify the credentials from the Manage Authentication tab later.
    2. On the Account tab, select the authentication service you want to use. Enter the username and password.
    3. On the Add Credentials tab, click the Test Credentials dropdown. Specify the IP address or FQDN of the asset you want to test. Specify the port number for the authentication service.
    4. Click Test Credentials.

    Understanding credential test results

    Successful credential tests show a green confirmation message.
    Failed tests appear in red and may show the following text:

    • Invalid credentials - Your username and/or password were incorrect.
    • Connection refused - You specified the wrong port number, the port is not open on the host, or a firewall actively blocked the connection.
    • No route to host - The IP address or FQDN specified was not found on the network. This means that you entered the wrong address, the host network cannot be reached from the network subnet hosting the console, or the host is not connected.
    1. Click Create to save the credentials.
5. On the Templates tab, select or add a scan template.
  1. On the Templates tab, create or select a scan template.
    1. Select an existing scan template from the list.
    2. (Optional) Add a new template.
      1. To create a new template from scratch, click Create Scan Template.
      2. To create a new template from a copy, click the Copy icon next to the template you want to base the new one on.
      3. Complete the Scan Template Configuration window.
      4. Click Save.
      5. Click the Refresh icon in the Scan Template list.
      6. Select the new scan template.
6. On the Scan Engines tab, add or select the scan engine or engine pool
  1. On the Scan Engines tab, add or select the scan engine or engine pool.
    1. Select whether to scan the asset with the selected engine or the engine most recently used for the asset.
    2. Select an existing engine or engine pool.
    3. (Optional) Add a scan engine.
      1. Click the Add Scan Engine tab.
      2. Name the scan engine.
      3. Enter the IP address of the scan engine.
      4. Click Save.
      5. Select the new scan engine in Site Configuration.
    4. (Optional) Add an engine pool.
      1. Click the Create Engine Pool tab.
      2. Name the engine pool.
      3. Select the engines to include in the pool.
      4. Click Save.
      5. Select the new engine pool in Site Configuration.
7. On the Alerts tab, set your scan alerts.
  1. On the Alerts tab, set your scan alert notifications.
    1. Click Create Alert.
    2. Name the alert.
    3. To limit the number of this type of alert, set the Maximum Alerts to Send.
    4. Select the types of events you want to generate alerts for.
    5. Select a severity level of vulnerabilities to include in the alerts.
    6. Select the notification method.
    7. Click Save.
8. On the Schedule tab, schedule the scan.
  1. On the Schedule tab, set a schedule for running the scan automatically.
    1. Click Create Schedule.
    2. Name the schedule.
    3. Select Enable schedule.
    4. Enter a start date in mm/dd/yyy format, or select a date from the calendar.
    5. Enter a start time in HH:MM format, and select AM or PM.
    6. Select a template and scan engine.
    7. Click Save.
  1. Click Save or Save & Scan.

Editing sites

You can edit site configuration options from the Sites page.