Add a Scanner

The following feature is not supported in Federal Risk and Authorization Management Program (FedRAMP) environments. For more information, see the FedRAMP Product Offering.

Required User Role: Administrator supports the use of as a Nessus scanner within is an enterprise-class remote vulnerability scanning service you can use to audit internet-facing IP addresses for both network and web application vulnerabilities from the cloud. While does not manage scanners (for example, does not push plugins to the scanner), you can add scanners to the same way you add internal, local, or remote Nessus scanners.

Before you begin:

  • Confirm that you have a valid, active subscription.

To add to as a Nessus scanner:

  1. Log in to via the user interface.

  2. Click Resources > Nessus Scanners.

  3. At the top of the table, click Add.

  4. Configure Nessus scanner options, as described in Nessus Scanners. You use values for some settings.


    Value for a Configuration


    • Commercial

    • FedRAMP:




    The username for an active user account.


    The password for an active user account.


    The zones within that use as a scanner.

  5. Click Submit.

Note: Existing scan reports from are not automatically available in However, you can manually download and import them into

Note: By default, selects the corresponding regional scanner. For example, if you run a scan in the United States, selects the United States scanner. If you run a scan in Germany, selects the Germany scanner.

What to do next:

  • Configure a scan zone, repository, and active scan objects, as described in Active Scans.