SAINT Scanner Overview
JSA collects and imports scan reports from Security Administrator's Integrated Network Tool (SAINT) vulnerability appliances with Version 8 software by using the SAINT API. SAINT scan reports include vulnerability data, MAC addresses, port information, and service information.
To integrate SAINT with JSA, complete the following steps:
From your SAINT appliance, obtain and record the SAINT API port number. You need this information when you add a scanner in JSA. SeeObtaining the SAINT API Port Number.
From your SAINT appliance, obtain and record the SAINT API token. You need this information when you add a scanner in JSA. See Obtaining the SAINT API Token.
From your SAINT appliance, configure the SAINT API to send scan reports to JSA. See Adding a JSA Host to the Allowed API Clients List.
Copy the server certificate to support HTTPS connections. See Copy the Server Certificate.
From your JSA Console, add a SAINT vulnerability scanner. See Adding a SAINT Vulnerability Scan.
Live scan - If you select this option when you add a SAINT scanner in JSA, JSA starts a live remote vulnerability scan on the SAINT Scanner. When the scan is complete, JSA collects and imports the vulnerability scan report. You might want to select this option if you don't have any existing scans on the SAINT appliance.
Report only - If you select this option when you add a SAINT scanner in JSA, JSA imports only scan reports for scans that exist on the SAINT appliance. You might want to select this option if the SAINT appliance has scans that are scheduled to run regularly.
From your JSA Console, create a scan schedule for the scanner that you added. See Scheduling a Vulnerability Scan.