How do I run a PCI DSS compliance scan?

Avatar
Oscar Wickman
Follow

In order to scan for PCI DSS Compliance you first need to either import or create a compliance scan profile.

Import a PCI DSS Compliance scan profile:

  1. Login to Security Center.
  2. Click Scan Network in top header.
  3. Click Scan Profiles.
  4. Click Import > PCI DSS Compliance > OK
  5. Done!

Create a PCI DSS Compliance scan profile:

  1. Login to Security Center. 
  2. Click Scan Network in top header.
  3. Click Scan Profiles.
  4. Click +Add scan profile.
  5. Under the headline General informationenter the following:
    • Name: the name of the profile, e.g. Standard scan profile.
    • Owner: the owner of the schedule.
    • Details: any comments or a brief description of the profile that you want to add.
  6. Click Compliance > Enable PCI DSS compliance test.
    By enabling the PCI DSS compliance tests we will include the required areas for the framework in the scan and return the outcome of these in the scan results. All assets scanned with PCI compliance test will automatically receive a PCI DSS tag that cannot be removed later.
  7. For settings under tabs Scan settingsAuthenticationand Additional settings please read instructions in the separate article. To use recommended settings, you don’t make any changes in these tabs.
    http://support.holmsecurity.com/hc/en-us/articles/212841809
  8. Click OK.
  9. Done!

Scan for PCI DSS Compliance:

To schedule a scan please follow these instructions. Notice that you first need to create a scan profile that you use for your schedule.

  1. Login to Security Center.
  2. Click Scan Network in the header.
  3. Click Schedules.
  4. Click +Add scan schedule.
  5. Under the headline General information enter the following:
    • Name: the name of the schedule, e.g. PCI DSS Compliance scan.
    • Owner: the owner of the schedule. Will be the one receiving notifications for the schedule.
    • Scan profile: select the scan profile for the schedule.
    • Scanner appliance: select External for external scanning of your network from Holm Security VMP cloud platform, or select an installed scanner appliance for local scanning.
  6. Under the headline Targets enter the following:
    • IPs/Ranges: the targets for your scan. Can be specific host or IP ranges. You can add any number of hosts. All assets scanned with PCI compliance test will automatically receive a PCI DSS tag that cannot be removed later.
    • Include all hosts in IP range belonging to tag: if you want all IP’s in a IP range to be included if a tag matches a IP range asset, even if each host doesn’t have the specific tag.
    • Select tags: Select the preferred tags you wish to use as the target for the scan.
    • Include hosts that: here you include hosts that have all or any of the specific tags that you enter.
    • Do not Include hosts that: here you exclude hosts that have all or any of the specific tags that you enter.
  7. Under the headline Schedule enter the following:
    • Schedule enabled: Select if you want to run Recurrent scans or to run Once on a scheduled time.
    • Start: select the first start date and time. Notice that reoccurring scans will start at the time set here.
    • Timezone: select the timezone for the schedule.
    • Repeat: Select daily,weekly or monthly between the scans.
    • Every: The occurence in combination with the values selected in repeat and day 
    • Day: Select which day you want the scans to run.
  8. Under the headline Notifications enter information about notifications sent before the scheduled scan and when the scheduled scan is finished.
    • Under Notification before scan starts, enter the following:
    • Notify scan owner before scan starts: check to enable.
    • Notify before the scan starts: select how long before the scan the notifications should be sent. Default is 1 hour.
    • Subject: enter a custom subject for the notification, or use default.
    • Sender name: enter a custom sender name for the notification, or use default.
    • Sender email: enter a custom sender email for the notification, or use default. If you use your own email (e.g. notifications@yourbusiness.com) address please add the following SPF record for the domain (e.g. business.com) to avoid problems receiving the emails:
      http://support.holmsecurity.com/hc/en-us/articles/213446285
    • Recipients: Enter additional recipient for the notifications.
    • Message: Enter a custom message for the notification, or use default.
    • Under Notification for finished scan enter the following:
    • Notify scan owner when this scan is finished: check to enable.
    • Subject: enter a custom subject for the notification, or use default.
    • Sender name: enter a custom sender name for the notification, or use default.
    • Sender email: enter a custom sender email for the notification, or use default.
    • Also send notification to the following email addresses: enter additional recipient for the notifications.
    • Message: enter a custom message for the notification, or use default.
  1. Click OK.
  2. The scan will now run and a notification sent (if activated) according the schedule.
  3. Done!

 

 

Have more questions? Submit a request

0 Comments

Please sign in to leave a comment.