Skip to content

Commit b18ab1e

Browse files
memildinmemildin
committed
Added networking requirements
1 parent b8bd8e8 commit b18ab1e

File tree

1 file changed

+13
-1
lines changed

1 file changed

+13
-1
lines changed

articles/security-center/built-in-vulnerability-assessment.md

Lines changed: 13 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -86,6 +86,12 @@ To deploy the vulnerability scanner extension:
8686

8787
Scanning begins automatically as soon as the extension is successfully deployed. Scans will then run at four-hour intervals. This interval is hard-coded and not configurable.
8888

89+
1. If the deployment fails on one or more VMs, ensure the target VMs can communicate with Qualys's cloud service on the following two IP addresses:
90+
91+
- 64.39.104.113
92+
- 154.59.121.74
93+
94+
8995
## Viewing and remediating discovered vulnerabilities
9096

9197
When Security Center identifies vulnerabilities, it presents findings and related information as recommendations. The related information includes remediation steps, related CVEs, CVSS scores, and more. You can view the identified vulnerabilities for one or more subscriptions, or for a specific VM.
@@ -134,11 +140,17 @@ For full instructions and a sample ARG query, see this Tech Community post: [Exp
134140
### Are there any additional charges for the Qualys license?
135141
No. The built-in scanner is free to all standard tier users. The "Enable the built-in vulnerability assessment solution on virtual machines (powered by Qualys)" recommendation deploys the scanner with its licensing and configuration information. No additional licenses are required.
136142

137-
### What permissions are required to install the Qualys extension?
143+
### What prerequisites and permissions are required to install the Qualys extension?
138144
You'll need write permissions for any VM on which you want to deploy the extension.
139145

140146
The Azure Security Center Vulnerability Assessment extension (powered by Qualys), like other extensions, runs on top of the Azure Virtual Machine agent. So it runs as Local Host on Windows, and Root on Linux.
141147

148+
During setup, Security Center checks to ensure that the VM can communicate with Qualys's cloud service on the following two IP addresses:
149+
150+
- 64.39.104.113
151+
- 154.59.121.74
152+
153+
142154
### Can I remove the Security Center Qualys extension?
143155
If you want to remove the extensions from a VM, you can do it manually or with any of your programmatic tools.
144156

0 commit comments

Comments
 (0)