Skip to main content

Scan configuration

You can use scan groups to link together multiple cloud accounts for the purpose of data gathering, compliance reports and statistics, and managing scan schedules.

You can access the page using the Scan configuration link in the menu on the left side of the console.

CSPM_GCP_sacan_groups_425547_en.png

Adding a new scan group

To create a new Scan Group, follow these steps:

  1. Click the Create New Scan Group button on the right top corner. You will be direct to a page to add a new scan group.

  2. Fill in the group details:

    1. Type in a name for the group under Scan Group Name.

    2. Add a description for the group in the Description text box, to make it easier to identify the purpose of the group.

    3. Select one of the options under Scan Frequency to determine the frequency of automatic scans that run on the accounts in the group.

      Note

      You can edit the group later and select a different frequency.

  3. Click Save Changes

  4. You will then be directed to a page to Add Account to the scan group.

    Tip

    You can skip the process by clicking the go back button on the browser.

Editing a scan group

To edit a scan group, follow these steps:

  1. Click the Edit button on the right side of the scan group you want to edit.

    CSPM_GCP_sacan_groups_edit_425547_en.png

    The Scan Group Details page is displayed.

  2. Make the modifications you need to the following sections:

    • Scan Group Name - the name of the scan group. You can use the group name to easily identify and search for the group in the GravityZone Cloud Security console.

    • Description - the description of the scan group. This information makes it easier for you to identify the purpose of the group and what cloud accounts are linked to it.

    • Scan Frequency - determine the frequency of automatic scans that run on the accounts in the group:

      • Daily - a scan will run daily, at the time you select.

      • Weekly - a scan will run once per week, at the time and day you select.

    • Notification Configuration - configure when notifications are sent and who receives them using these settings:

      • Select Finding's Severity - notifications will only be send for findings of the selected severity.

      • Send notifications to - notifications will only be be sent to the selected Slack channels.

      Tip

      This feature requires an integration with Slack.

  3. Click the Save changes button on the lower right side of the window.

    CSPM_GCP_scan_groups_edit_save_425547_en.png

Deleting a scan group

To delete a scan group, follow these steps:

  1. Click the Edit button on the right side of the scan group you want to edit.

    CSPM_GCP_sacan_groups_edit_425547_en.png

    The Scan Group Details page is displayed.

  2. Click Delete scan group.

    CSPM_scan_groups_delete_button_425547_en.png

    Note

    This button is only available if no cloud accounts are linked to the scan group.

    A confirmation window is displayed.

  3. Click Delete scan group to confirm the request.

    CSPM_scan_groups_delete_confirmation_425547_en.png

Editing a cloud account

To edit a specific cloud account follow the steps below:

  1. Click the name of the scan group to expand the item and display the list of accounts associated to it.

  2. Click the Edit button on the right side of the account you want to edit.

    CSPM_GCP_sacan_groups_expand_edit_425547_en.png
  3. Make the modifications you need to the following sections:

    • Account Name - the name of the account. You can use the account name to easily identify and search for the account in the GravityZone Cloud Security console.

    • Project ID

    • API Credentials

  4. Click Enable account / Disable account.

  5. Click the Save changes button on the lower right side of the window.

Disabling and enabling cloud accounts

To edit a specific cloud account follow the steps below:

  1. Click the name of the scan group to expand the item and display the list of accounts associated to it.

  2. Click the Edit button on the right side of the account you want to edit.

    CSPM_GCP_sacan_groups_expand_edit_425547_en.png
  3. Click Enable account / Disable account.

    A confirmation window is displayed.

  4. Confirm the request.

  5. Click the Save changes button on the lower right side of the window.

Removing a cloud account from a scan group

An account cannot be removed, only archived.