ASV Scanning for Compliance

Topics Discussed

To fully use this screen, you must add the following permissions to your account:

  • Read Compliance

  • Write Compliance

Use the ASV Vulnerability Scanning add-on product to meet compliance requirements and review potential issues discovered by the scans.

You can order the following add-on products:

  • HIPAA Vulnerability Scans

  • PCI Vulnerability Scans

  • PCI + HIPAA Vulnerability Scans

After you order the ASV Vulnerability Scanning add-on product, you can use the ASV Vulnerability Scanning screen in the Armor Management Portal (AMP) to:

  • View the status of the vulnerability scan

  • Upgrade or downgrade your service

  • Access the CoalfireOne portal to schedule a scan


Order ASV Vulnerability Scanning


  1. In the Armor Management Portal (AMP), in the left-side navigation, click Marketplace.

  2. Locate and select Coalfire Vulnerability Scanning.

  3. Locate the desired add-on product, and then select Choose This.

  4. Click Purchase.

  5. A ticket will be automatically created and sent to Armor Support. To see the status of this ticket, in the left-side navigation, click Support, and then click Tickets. Armor will use this ticket to communicate with you about the status of your order and to inquire about your specific configuration requests.

    • When the product has been fully provisioned, you can view the Vulnerability Scanning screen in AMP for detailed information.


Upgrade, Downgrade, or Cancel A Vulnerability Scanning Option


When you downgrade or cancel a vulnerability scanning option, the changes will take place at the end of the billing cycle.

When you upgrade, the changes will take place immediately. Your next bill will be pro-rated to reflect this upgrade.

CoalfireOne portal access will revert to read-only after cancelling Vulnerability Scanning for Compliance. Read-only access will allow users to download past reports. It is recommended that users download past reports immediately, as the data is not retained indefinitely.

Prior to cancelling, it is recommended that users cancel scheduled scans. Canceling scans prevents users from getting unnecessary notifications.

  1. In the Armor Management Portal (AMP), in the left-side navigation, click Security.

  2. Click Vulnerability Scanning.

  3. Click Compliance.

    • If you do not have the vulnerability scanning add-on product, then click Order in the Marketplace.

  4. Click the gear icon, and then select the desired option:

    1. To upgrade or downgrade, select the Change Service icon, click Choose This, and then click Purchase.

    2. To delete, select the Remove Service icon, and then click Remove Vulnerability Scanning.


Access CoalfireOne Portal and Schedule A Scan


You must use the CoalfireOne portal to schedule a scan.

  1. After you purchase an add-on product, you will receive an email with login information for Coalfire. Open the email, and then copy the login information. You will need this information to enter the Navis Portal.

  2. In the Armor Management Portal (AMP), in the left-side navigation, click Security.

  3. Click Vulnerability Scanning.

  4. Click Compliance.

  5. Click Log into Navis Portal.

  6. Use the login information from the email to access the Navis Portal.

  7. Under Projects, click the applicable project name (you will have three different projects, and some/all will be active depending on which offering you are subscribed to).

  8. In the selected project, click the Setup menu item.

  9. Above the list of previously-scheduled scans, click the Add button.

  10. Under the Scan Details tab, complete the empty fields, including Name and Frequency.

  11. Click the Targets tab.

  12. Above the list of previously-added targets, click the Add Existing Target button.

  13. Mark the desired IP addresses, and then click Add.

  14. Click the Save button.



Resyncing Scan Targets Between AMP and Coalfire


As you assign or unassign IP addresses to your virtual machines, those which remain assigned are made available within the Coalfire Navis portal as potential scan targets. Normally, such changes are immediately available within Coalfire, but this can occasionally fail. In the event you are missing scan targets, you can attempt to remediate this by performing a manual synchronization between AMP and Coalfire:

  • In the Armor Management Portal (AMP), in the left-side navigation, click Security.

  • Click Vulnerability Scanning.

  • Click Compliance.

  • Click the gear icon, and then select Resync Targets (this option is only displayed if there is at least one unsynced scan target)

If you attempt the above steps yet still have issues with scan targets appearing missing within Coalfire, please create a ticket with Armor Support for additional assistance.



Learn More About CoalfireOne


The CoalfireOne platform is Coalfire's newest offering, which incorporates several improvements to their current scanning & assessment experience. To learn more about how to use those new functions, please watch the training videos available on our CoalfireOne Portal Training page.


Related Documentation

Armor Marketplace

Vulnerability Scanning

Vulnerability Scanning Exclusions