Configuring a Permitted Scan Interval
In JSA Vulnerability Manager, you can create an operational window to specify the times that a scan can run.
You must have the correct license capabilities to perform the following scanning operations. If you need assistance to obtain a new or updated license key, contact your Juniper Customer Support.
If a scan does not complete within the operational window, it is paused and continues when the operational window reopens. To configure an operational window:
Click the Vulnerabilities tab.
In the navigation pane, click Administrative >Operational Window.
On the toolbar, click Actions >Add.
Enter a name for the operational window in the Name field.
Choose an operational window schedule from the Schedule list.
Optional: Select the times when scanning is permitted.
Optional: Select your timezone.
If you selected Weekly from the Schedule list, then click the desired days of the week check boxes in the Weekly area.
If you selected Monthly from the Schedule list, then select a day from the Day of the month list.
Click Save.
Operational windows can be associated with scan profiles by using the When To Scan tab on the Scan Profile Configuration page.
If you assign two overlapping operational windows to a scan profile, the scan profile runs from the beginning of the earliest operational window to the end of the later operational window. For example, if you configure two daily operational windows for the periods 1 a.m. to 6 a.m. and 5 a.m. to 9 a.m., the scan runs between 1 a.m. and 9 a.m.
For operational windows that do not overlap, the scan starts from the earliest operational window and pauses if there's a gap between the operational windows, and then resumes at the beginning of the next operational window.
Scanning During Permitted Times
In JSA Vulnerability Manager, you can schedule a scan of your network assets at permitted times, by using an operational window.
If you are applying the operational window to an authenticated patch scan, set the minimum window to 4 hours.
Click the Vulnerabilities tab.
In the navigation pane, select Administrative >Operational Window.
On the toolbar, select Actions >Add.
Type a name for your operational window, configure a permitted time interval and click Save.
In the navigation pane, select Administrative >Scan Profiles.
On the toolbar, click Add.
When you create a scan profile, the only mandatory fields are Name and IP Addresses on the Details tab of the Scan Profile Configuration page. To configure scanning during permitted times, you must also follow the remaining steps in this procedure.
Click the When To Scan tab.
In the Run Schedule list, select Daily.
In the Start Time fields, type or select the date and time that you want your scan to run each day.
In the Operational Windows pane, select your operational window from the list and click (>).
Click Save.
Managing Operational Windows
In JSA Vulnerability Manager, you can edit, delete, and print operational windows.
You can edit an operational window while it is associated with a scan profile.
Click the Vulnerabilities tab.
In the navigation pane, select Administrative >Operational Window.
Select the operational window that you want to edit.
On the toolbar, select an option from the Actions menu.
Follow the instructions in the user interface.
Note:You cannot delete an operational window that is associated with a scan profile. You must first disconnect the operational window from the scan profile.
Disconnecting an Operational Window
If you want to delete an operational window that is associated with a scan profile, you must disconnect the operational window from the scan profile.
Click the Vulnerabilities tab.
In the navigation pane, select Administrative >Scan Profiles.
Select the scan profile that you want to edit.
On the toolbar, click Edit.
Click the When To Scan pane.
Select the relevant option from the Run Schedule list as required.
In the Name field, select the operational window that you want to disconnect and click (<).
Click Save.