Adding a Nessus Live Scan with the XMLRPC API
JSA can use the XMLRPC API to start a pre-configured scan that is based on a scan name and optional policy name on the Nessus server.
To start a live scan from JSA, you must specify the scan name and the policy name for the live scan data you want to retrieve. As the live scan progresses, you can point your mouse over the Nessus scanner in the Scan Scheduling window to view the percentage of the live scan that is complete. After the live scan reaches completion, JSA uses the XMLRPC API to retrieve the scan data and update the vulnerability information for your assets.
The Nessus XMLRPC API is only available on Nessus servers and clients with software v4.2 to v5.0.
- Click the Admin tab.
- Click the VA Scanners icon.
- Click Add.
- In the Scanner Name field, type a name to identify your Nessus scanner.
- From the Managed Host list, select the managed host from your JSA deployment that manages the scanner import.
- From the Type list, select Nessus Scanner.
- From the Collection Type list, select Scheduled Live Scan - XMLRPC API.
- Configure the following parameters:
The IP address or host name of the Nessus server.
The port number the Nessus server.
The user name that is required to access to access Nessus server
Your Nessus server password must not contain the exclamation mark (!) character or authentication failures can occur over SSH.
The name of the scan you want displayed when the live scan runs on the Nessus server.
If this field is clear, the API attempts to start a live scan for JSA Scan. This field does not support by using the ampersand (&) character in this field.
The name of a policy on your Nessus server to start a live scan.
The policy must exist on the Nessus server when the system attempts to start the scan. If the policy does not exist, an error is displayed in the Status column. Systems can have custom policy names, but several default policy names are included. External Network Scan, Internal Network Scan, Web App Tests, Prepare for PCI DSS audits are default policy names.
- To configure a CIDR range for your scanner:
In the text field, type the CIDR range that you want this scanner to consider or click Browse to select a CIDR range from the network list.
- Click Save.