4

Agentless Assets

Last Update 6 days ago

Agentless Asset Onboarding Jump/Bastion Host Setup How to Configure WinRM over HTTPS (Port 5986) SaaS - Agentless Target Machine Prerequisites Check

Agentless Asset Onboarding

Ashwani

Last Update 8 months ago

This section provides detailed instructions for onboarding assets to the SecOps Solution SaaS Platform using the agent-less method. This enables vulnerability scanning and patch deployment without installing any software agents on the target machines.

Overview

SecOps Solution supports onboarding two types of assets:

  • Public Assets: Machines with public IPs accessible directly from the internet.

  • Private/Internal Assets: Machines with private IPs inside a network, accessed via a Jump Host.

Step-by-Step Onboarding Guide

1. Access the Assets Module

  • Log in to the SecOps platform.

  • Navigate to the Assets tab.

2. Add a New Asset

  • Click the Add Asset button to begin adding asset information.

3. Select Agentless Mode

  • At the top of the form, ensure the Agent Less option is selected.

4. Select Functionality

  • Choose one or both:

    • Vulnerability Scan (to identify system vulnerabilities).

    • Patch Deployment (to apply security patches).

5. Choose Vulnerability Scan Type (if selected)

  • For vulnerability scanning, pick one of the two options:

    • Unauthenticated Scan: External scan without credentials, identifies open ports and exposed services only.

    • Authenticated Scan: In-depth OS and third-party application scan using credentials.

6. Fill in Asset Information

  • IP Address:

    • Enter the asset’s IP address. Use public IPs for internet-facing machines or private IPs for internal machines.

    • If onboarding a range of IPs, check the CIDR checkbox next to the IP field and enter the subnet in CIDR notation (e.g., 192.168.1.0/24).

  • Machine Name: Provide a descriptive name for your reference.

  • Groups: Assign the asset to one or multiple groups (e.g., Development, Production).

  • Criticality: Set the business impact or risk level on a scale (e.g., 1 to 5).

7. Provide Credentials (if required)

  • For authenticated scans or patch deployments:

    • Linux (SSH): Choose to whitelist SecOps public key on the asset, upload your SSH private key, or use password authentication.

    • Windows (WinRM): Enter username and password for remote WinRM access.

8. Select Jump Host (if applicable)
  • If the IP address is private, select an existing Jump Host from the drop-down.
  • If you have not configured a Jump Host yet, please add one first via the Assets > Add Jump Host option. For detailed instructions on configuring and setting up a Jump Host, please refer to the Jump Host Setup Guide.

9. Finalize Asset Addition

  • Click Add Asset to save the asset.

  • After clicking, a notification will pop up where the current onboarding status can be tracked.

  • If the onboarding is successful, a confirmation message will be displayed in the notification area.

  • If there is a connectivity or credential issue, the notification will show specific error details so the necessary corrections can be made and onboarding retried.

Was this article helpful?

1 out of 2 liked this article

Still need help? Message Us