Enable your users to run scan coverage reports from the CISO dashboard. With these reports, your users can see what the organization's scan coverage is over a period of time.

Before you begin

Role required: sn_vul.vulnerability_admin, sn_vul.vulnerability_analyst

About this task

The scan coverage shows the number of assets that are being scanned by the vulnerability scanners for the various classes over the last 90 days. These assets are compared to the number of scannable assets in the Configuration Management Database (CMDB). By default, the Scan Coverage Configuration module includes CMDB CI classes, to which at least one scanned asset has been matched. You can add a CI class from the CMDB to the Scan Coverage report that is displayed on the CISO dashboard. You can include or exclude CMDB CI classes that appear on the Scan Coverage reports.Scan coverage configuration module.

Procedure

  1. Navigate to All > Vulnerability Response > Administration > Scan Coverage Configuration.
  2. Click New.
  3. On the form, fill in the fields.
    Table 1. Scan Coverage Configuration form
    Field Description
    CMDB CI Class CI class that must be added to the Scan Coverage Report on the CISO dashboard.
    Note: If a CI class already exists in the Scan Coverage Configuration module, it is not included in this list.
    Consider Scannable Option to define if the CI class must be included or not. Include a CI class if you want its data to be added to the scan coverage reports. If excluded, the data for that CI class is not added.
  4. Click Submit.