SAINT Security Suite Scanner
JSA collects and imports scan reports from Security Administrator's Integrated Network Tool (SAINT) Security Suite vulnerability appliances by JSA using the SAINT API. SAINT Security Suite scan reports include vulnerability data, MAC addresses, port information, and service information.
To integrate SAINT Security Suite with JSA, complete the following steps:
From your SAINT Security Suite appliance, obtain and record the SAINT API port number. You need this information when you add a scanner in JSA. SeeObtaining the SAINT API Port Number.
From your SAINT Security Suite appliance, obtain and record the SAINT API token. You need this information when you add a scanner in JSA. See Obtaining the SAINT API Token.
From your SAINT Security Suite appliance, configure the SAINT API to send scan reports to JSA. See Adding a JSA Host to the Allowed API Clients List.
Copy the server certificate to support HTTPS connections. See Copy the Server Certificate.
From your JSA Console, add a SAINT Security Suite vulnerability scanner. See Adding a SAINT Security Suite Vulnerability Scanner in JSA.
The SAINT Security Suite vulnerability scanner supports the Live Scan and Report Only scan options in JSA.
Live scan - If you select this option when you add a SAINT Security Suite scanner in JSA, JSA starts a live remote vulnerability scan on the SAINT Scanner. When the scan is complete, JSA collects and imports the vulnerability scan report. You might want to select this option if you don't have any existing scans on the SAINT Security Suite appliance.
Report only - If you select this option when you add a SAINT Security Suite scanner in JSA, JSA imports only scan reports for scans that exist on the SAINT Security Suite appliance. You might want to select this option if the SAINT Security Suite appliance has scans that are scheduled to run regularly.
From your JSA Console, create a scan schedule for the scanner that you added. See Scheduling a Vulnerability Scan.