This guide will provide assistance with scanning an individual or group of assets in Rapid7's InsightVM during the onboarding process for a new asset or assets. Ongoing maintenance of the asset inventory in InsightVM is a responsibility of the respective IT groups. 

NOTE: For laptops, a scan will need to take place when setting up the asset/device prior to deploying it to the end user.

If you have any questions, please feel free to reach out to vulnerability-scan@umd.edu. 

1. Navigate to your site in the InsightVM on-prem console. 

2. Scroll down to the Current Scans section and select the blue Scan Now button

3. Enter information for the asset(s) being onboarded and verify all options shown below:

1. Provide a scan name
2. Verify that the UMD - Vulnerability Check scan template is selected
3. Verify the correct engine is selected. Note: If you do not have a scan engine in your environment, select Local Scan Engine
4. Tick the bullet next to Specify one or more assets within this site to scan
5.  Add IPs or FQDNs in the Assets to scan section. Note: For laptops, a FQDN should be used. For servers outside of your allocated IP range, an IP can be used here
6. Select Start Now

After the scan has completed, verify that the assets are showing in your site prior to deploying them out to the end-user.