Asset Groups
Asset groups help you organize the systems and devices in your environment (for example, domain controllers, servers, networking devices, and workstations).
Following a vulnerability scan of your environment, Fortra VM automatically recognizes what you have, and groups your assets. You also can manually create asset groups that fit how your environment is segmented.
An asset group is created by one of the following methods:
-
Standard (user generated)
-
You create with static IP addresses and hostnames (along with associated ports).
-
-
Dynamic (system and user generated)
- Fortra VM creates automatically following a vulnerability scan.
- You create with conditional filters (for example, Asset: Type + is + domain controller).
Asset groups can be used with business groups depending on how you want to segment your environment.
See related: Business Groups
Create a Standard Asset Group
-
From the navigation menu, select System > Asset Groups.
-
Select New Asset Group.
TIP: You can also create an asset group from anywhere in Fortra VM by selecting New > Asset Group on the site header. -
On the Create New Asset Group page, do the following:
-
Asset Group Name - Enter the new asset group name.
-
Business Group - If business groups are enabled, select the one to be associated with the asset group. For example, associate a network switches asset group with the network administrators business group.
-
TType - Select Standard.
-
Description (Optional) - Enter a description for the group.
-
Enable risk weight (Optional) - Enable to reveal a Weight sliding scale, which sets the weight of the asset group’s risk to your environment. The higher the weight, the more these assets affect your Fortra VMSecurity GPA, and vice-versa.
IMPORTANT: Changing an asset group’s risk weight can adversely affect your Security GPA. -
Use as label (Optional) - Enable to apply a smart label (with the same name as the asset group) to scanned assets that meet the group’s criteria.
-
-
Select Save.
- Select the IPs & Ports tab, and then configure the following parameters to create rules for the asset group based on IP addresses:
- Action - Select whether to Include or Exclude a range of IP addresses and ports. Include is the default.
- IP address - Enter the IP addresses to include or exclude from the asset group (separate multiple addresses with commas [,] or enter an IP address range [for example, 192.168.2.1-192.168.2.255]).
- Ports - Enter the ports associated with the IP addresses to include or exclude from the asset group (separate multiple ports with commas).
- Available Scanner Profiles - Select the scanner profile you want to apply the rules to.
Inclusion - See if your IP addresses and ports are within the scanner profile’s range (you must first select an available scanner profile to see this information).
Your asset group rule is created and appears at the bottom of the screen. To delete the rule select and the resulting check-mark to confirm.
NOTE: If you want your asset group to have a combination of included and excluded rules, you have to create separate rules.
NOTE: To view a scanner profile’s existing IP address and port rules, from the navigation menu, select Scanners > Scanner Profiles, select the scanner profile to view, and then select the IPs & Ports tab. - Use the navigation menu to return to Asset Groups, select the correct asset, and then select the Hostnames & Ports tab. Do the following to create rules for the asset group based on DNS hostname:
- Action - Select whether to Include or Exclude hostnames and ports.
- DNS Hostnames - Enter the hostnames to include or exclude from the asset group (separate multiple hostnames with commas). For example: www.mysite.com.
- Ports - Enter the ports associated with the hostnames to include or exclude from the asset group (separate multiple ports with commas).
- Available Scanner Profiles - Select the scanner profile you want to apply the rules to.
- Select Save. The asset group rule is created and appears at the bottom of the screen. To delete the rule, select and the resulting check-mark to confirm.
Create a Dynamic Asset Group
-
From the navigation menu, select Scan Settings > Asset Groups.
-
Select + New asset group.
-
On the Create New Asset Group page, do the following:
-
Asset group name - Enter the new asset group name.
TIP: Use established naming conventions for asset groups. - Business group - If business groups are enabled, select which group to associate with the asset group. For example, associate a network switches asset group with the network administrators business group.
-
Type - Select Dynamic.
NOTE: Dynamic Asset groups will only contain/filter previously scanned hosts located in Active View. - Enable risk weight (Optional) - Enable to reveal a Weight sliding scale, which sets the weight of the asset group’s risk to your environment. The higher the weight, the more these assets affect your Fortra VMSecurity GPA, and vice-versa.
- Description (Optional) - Enter a description for the group.
- Use as label (Optional) - Enable to apply a smart label (with the same name as the asset group) to scanned assets that meet the asset group’s criteria.
-
-
Select Save.
-
Select the Dynamic Assets tab and do the following to create a rule for the asset group:
-
Select an asset criteria (for example, Asset: Type).
-
Choose a comparison operator (options depend on the criteria previously selected).
-
Enter or select a value for the criteria (options depend on the criteria previously selected).
-
Select next to your rule to add it to the asset group.
-
(Optional) Create additional rules for the asset group.
-
-
Select Save Changes.
-
To delete a rule, select next to it.
Modify an Asset Group
- From the navigation menu, select Scan Settings > Asset Groups.
- On the Asset Groups page, select the group to change.
- Make your changes in either tab, then select Save.
Delete an Asset Group
- From the navigation menu, select Scan Settings > Asset Groups.
- On the Asset Groups page, select Delete, and then select Continue.