Guides
Start typing to search…

Scanner Groups and Scanners

Scanner Group Guide

Guide for creating and managing scanner groups in CyberOptix.

Overview

Scanner groups organize one or more scanners into logical units that can be assigned to zones. A scanner group can be used in multiple zones, allowing flexible deployment of scanning resources across your infrastructure.

Use Cases:

  • Group scanners by geographic location (US-East, EU-West)
  • Organize by network segment (DMZ, Internal, Cloud)
  • Separate by function (Vulnerability Scanning, Active Discovery)

Prerequisites

  • Organization configured in CyberOptix
  • Scanner deployed and accessible via SSH
  • SSH access to scanner with the default ubuntu account

Create Scanner Group

Step 1: Open Add Scanner Group Form

Click the Add icon in the Scanner Groups section.

Add Scanner Group

Step 2: Name Scanner Group

Enter a descriptive name for the scanner group and click Submit.

Scanner Group Name

Naming Best Practices:

  • Use descriptive names (e.g., DMZ-Scanners, Cloud-East, Internal-Network)
  • Include location or function for easy identification
  • Avoid generic names like Group1 or Default

Link Scanner to Group

Step 1: Copy Link Command

After creating the scanner group, click the copy icon to copy the scanner link command.

Step 2: Connect to Scanner

SSH into your scanner using the default ubuntu account:

ssh [email protected]

Step 3: Run Link Command

Execute the copied command to link the scanner to the group:

sudo scanner-link -url https://{YOUR_INSTANCE}.cyberoptix.io/ \
  -scanner_group_id 0ohFdpgBOG9fGmV90yAi \
  -org_id Xabx-pcBHuhMy42duE6S

Parameters:

  • -url - Your CyberOptix instance URL
  • -scanner_group_id - Unique ID for the scanner group
  • -org_id - Organization ID

Step 4: Verify Scanner Link

Confirm the scanner appears in the scanner group in the CyberOptix interface.

Assign Scanner Group to Zone

After creating and populating a scanner group:

  1. Navigate to Zones
  2. Select or create a zone
  3. Assign the scanner group to the zone
  4. Scanners in the group will perform discovery and testing within the zone's subnet scope

Scanner Group Management

Add Multiple Scanners

Link multiple scanners to the same group by running the link command on each scanner:

# On scanner 1
ssh [email protected]
sudo scanner-link -url https://mycompany.cyberoptix.io/ -scanner_group_id ABC123 -org_id ORG456

# On scanner 2
ssh [email protected]
sudo scanner-link -url https://mycompany.cyberoptix.io/ -scanner_group_id ABC123 -org_id ORG456

Use Group in Multiple Zones

A single scanner group can be assigned to multiple zones:

  • Zone A (DMZ): Uses DMZ-Scanners group
  • Zone B (Cloud): Uses DMZ-Scanners group
  • Scanners in DMZ-Scanners perform testing in both zones

Scanner Deployment

For complete scanner deployment instructions, including installation and configuration, refer to the Scanner Deployment documentation.

Best Practices

Organize by Network Segment:

  • Create separate groups for DMZ, internal, and cloud environments
  • Prevents cross-segment scanning conflicts

Use Multiple Scanners per Group:

  • Distribute scanning load across multiple systems
  • Provides redundancy if one scanner fails

Match Groups to Zones:

  • Align scanner groups with your zone structure
  • Simplifies assignment and troubleshooting

Monitor Scanner Health:

  • Regularly verify scanners are connected and operational
  • Review scanner logs for errors or connectivity issues

Updated about 2 months ago