Skip to main content

Netskope Help

Manage Netskope IoT Security

Create OpenVAS scan

You can scan your network using the in-built scanner that will generate vulnerability reports which you can download. Follow the procedure to create a new OpenVAS scan for your appliance:

  1. Navigate to the Manage > Scans menu in your appliance. You can see the “New OpenVAS Scan” window.

  2. Give a name to the scan.

  3. Choose a scan target. Following are your options:

    1. Subnet: provide a subnet IP address to target the scan.

    2. IP range: provide a range of IP addresses to target the scan.

    3. IP list: provide a comma separated list of IP addresses to target the scan.

  4. Schedule the scan to be one time immediately on creation.

  5. Click on “Save scan configuration” to create an OpenVAS scan.

    6__Create_OpenVAS_Scan.png

    Note

    You can see the executed scans in the right side table with the details and reports attached.

Assets

Navigate to Manage > Assets menu to see the imported and non-imported assets from your environment. Netskope IoT Security devices do not process the devices which do not have the MAC address assigned to it and hence are non-importable assets. The window displays a list of assets with the details like host name, manufacturer, operating system, type, category, site, etc. and you can edit the information. Assets integrated from third party integration or Push API are not editable. You can see the audit actions logged in the Audit Log column.

Note

Click on the CSV button to download the asset information locally on your computer.

Warning

You can see the configuration section of the Netskope Asset Management module in the Settings tab by clicking on the Settings button. You can not modify the configuration in this section. It is predefined by Netskope systems administrators.

6__Asset_Catalog.png
Import Netskope asset

Follow the procedure to import the unmanaged devices that were discovered by the system.

  1. Navigate to Manage > Assets menu.

  2. Click on the “Import Netskope Assets” button at the top right side of the screen.

  3. Select the devices that you want to export into your asset management system in the discovery view.

  4. Click import preview to go to export view.

  5. Modify the record by clicking on the table. Export view shows one interface per row compared to the device view shown in Netskope IoT Security UI.

  6. Select the assets and click on the “Export Assets” button to add the interfaces into the asset management system.

    Note

    You can click the cross button at the top right side of the screen to cancel the action.

Delete Netskope assets

You can modify a Netskope asset and can not modify an asset fetched from a third party integration and hence, can not delete an asset whose source is not “Netskope”. You can not delete an unmanaged asset.

Follow the procedure to delete a Netskope assets:

6__Delete_Netskope_Asset.png
  1. Navigate to the Manage > Assets menu.

  2. Select a Netskope asset which you want to delete.

  3. Click on the MARK AS UNMANAGED button. You will see an “Unmanage Preview” window.

  4. Select the asset and click the MARK AS UNMANAGED button.

  5. Confirm YES to delete the asset from the Netskope Asset Management System.

Sites and Regions

In Netskope IoT Security, each appliance has a site and a unique site-ID. You can assign multiple appliance-IDs to a single site. Multiple sites make a region, thereby creating a hierarchy of sites.

“Default” site and “HQ” region is predefined in the appliance and you can not modify it. By default, any site created is assigned to the “HQ” region and any IoT Security appliance created is assigned to the “Default” site.

Warning

You can not modify the “Default” site and “HQ” region.

Navigate to Manage > Sites and Regions menu, on the left side you can see a tree structure of the sites and regions in your environment.

Create new site

You can create sites in the Netskope IoT Security UI to manage the sites. Follow the procedure to create new sites:

  1. Navigate to Manage > Sites and Regions menu.

  2. Click on the Site Management button. You will see a “Create New Site” window.

  3. Fill in the unique site name.

  4. Select the appliance from the dropdown list to be part of this site. You can create sites without assigning appliances to it for future use.

  5. Select the region of the site.

  6. Fill in the address of the appliance and validate if it exists by enabling the “Validate Address” checkbox.

  7. Click the “Create Site” button.

    6__Create_Site.png
Modify existing site

You can edit or delete the sites. Follow the procedure to edit the existing site:

6__Modify_site.png

Note

Click the “Cancel” button to forbid the action. Click the “Delete” button to delete the selected region. The sites assigned to the region to be deleted will automatically move to the “HQ” region.

  1. Navigate to Manage > Sites and Regions menu.

  2. Click on the Site Management button. You will see the “Create New Site” window.

  3. Click on the “Edit site” tab and you will see the “Edit Site” window.

  4. Select the existing site to modify from the right side pane on the screen.

  5. You can modify the site name, appliances, region and address fields.

  6. Click on “Save Site” to save the changes.

Create new region

You can create regions in Netskope IoT Security UI to manage the regions and sites. Follow the procedure to create a new region:

  1. Navigate to Manage > Sites and Regions menu.

  2. Click on the Site Management button.

  3. Click on the “Regions” tab. You will see a “Create New Region” window.

  4. Select a parent region under which you want to create other regions and sites.

  5. Fill in the unique region's name.

  6. Select the sites from the dropdown list to be part of this region. You can create regions without assigning sites to it for future use.

  7. Click the “Create Region” button.

    6__Create_Region.png
Modify existing region

You can edit or delete the regions. Follow the procedure to edit the existing manually created region:

  1. Navigate to Manage > Sites and Regions menu.

  2. Click on the Site Management button.

  3. Click on the “Regions” tab.

  4. Click on the “Edit Region” tab and you will see the “Edit Region” window.

  5. Select the region from the dropdown to modify.

  6. You can modify the parent region, region name and site fields.

  7. Click on “Save Region” to save the changes.

    Note

    Click the “Cancel” button to forbid the action. Click the “Delete” button to delete the selected region. The sites assigned to the region to be deleted will automatically move to the “HQ” region.

Tags and Groups

Users can create tags and groups in Netskope IoT Security to well organize the devices. You can create tags manually or it can be imported from third party integrations. If you assign a tag to none of the devices, it represents a cross sign and if you assign tag to at least one device; it represents a check sign in the Manage menu > Tags and Groups sub menu > Tags List pane.

Create a new tag

You can create a new tag manually in Netskope IoT Security. You can attach tags to the devices for better findability. Follow the procedure to create a new manual tag:

  1. Navigate to the Manage > Tags and Groups menu. You will see a “Create new Tag” window.

  2. Give a unique name to the tag.

  3. The source will be manual as it is user created.

  4. Click the “Create Tag” button.

    6__Create_Tag.png

    Note

    Click the “Cancel” button to forbid the action.

Modify existing tag

You can edit and delete any existing tag. Follow the procedure to edit any existing tag:

  1. Navigate to the Manage > Tags and Groups menu. You will see a “Create new Tag” window.

  2. Select an existing tag from the list of tags on the right side pane.

  3. You can edit the tag name field.

  4. Click on “Save Tag”.

    6__Modify_Tag.png

    Note

    Click the “Cancel” button to forbid the action. Click the “Delete” button to delete the selected tag. You can not delete imported or external tags.

Create a new group

You can create a new group manually in the appliance. You can attach groups to the devices. Follow the procedure to create a new group:

  1. Navigate to the Manage > Tags and Groups menu.

  2. Select the “Groups” tab. You will see the “Create Group” window.

  3. Give a unique name to the group.

  4. Add rules for the group to follow using the “and” and “or” combinations

  5. Click the “Save Group” button.

    6__Create_Group.png

    Note

    Click the “Cancel” button to forbid the action.

Modify existing group

You can edit and delete any existing group. Follow the procedure to edit any existing group:

  1. Navigate to the Manage > Tags and Groups menu.

  2. Select “Groups” tab

  3. Select an existing group from the list of groups on the right side pane.

    Note

    To see the devices satisfying the rule of a group, click on the notebook icon to show the devices.

  4. You can edit the group name and rules.

  5. Click “Save Group” to keep the changes.

    6__Modify_Group.png

    Note

    Click the “Cancel” button to forbid the action. Click the “Delete” button to delete the selected group.

Integrations

You can set up Crowdstrike integration through Netskope IoT Security UI.

Create a new CrowdStrike integration configuration

Follow the procedure to integrate Crowdstrike:

  1. Navigate to the Manage > Integrations menu. You will see a “Create New Integration Configuration” window.

  2. Set active or inactive state of the integration on creation.

  3. Give a unique name to the integration.

  4. Select the type as Crowdstrike from the dropdown list.

  5. Provide the Crowdstrike ID and secret key for Crowdstrike.

  6. Select consumer as “compliance” to calculate the compliance of the devices.

  7. Click on the “Create Integration” button.

    6__Create_Integration.png

    Note

    Click the “Cancel” button to forbid the action.

Edit existing integration configuration

You can edit, enable, disable and delete the existing integrations. Follow the procedure to edit the integration:

  1. Navigate to the Manage > Integrations menu.

  2. Select an integration from the list on the right side of the screen. You will see a “Edit Integration Configuration <name>” window.

  3. You can activate or deactivate the integration configuration.

  4. You can edit the name, type, id and secret key fields.

  5. Click on the “Save Integrations” button.

    6__Modify_Integration.png

    Note

    Click the “Cancel” button to forbid the action. Click the “Delete” button to delete the selected integration. You can not delete the integration when it is connected to the integration based compliance configuration.

Tag integrations

You can configure third party integrations to pull tags that can be used to tag devices. Tags pulled from third party integrations can not be modified.

6__Tag_integrations.png
Configuration

You can configure the third party integrations from your environment in Netskope IoT Security for device context integration and remediation integration for policy control and management. You can do so by integrating NAC or firewall from your environment.

Supported remediation integration configurations
  1. NAC

    • Aruba Clearpass

    • Cisco Meraki

    • Cisco ISE

    • FortiNAC

    • Juniper ATP

    • Mist

  2. Firewall

    • Juniper Networks

    • Palo Alto Networks

Create a new configuration
  1. Navigate to the Manage > Configurations menu.

  2. Give a unique name to the integration configuration.

  3. Add a description.

  4. Choose the type you want to integrate with from NAC or firewall.

  5. Choose a supported vendor from the drop down list.

  6. Provide a valid host IP address or a domain name to connect to the network.

  7. Choose an authentication method:

    • Username/password: provide the credentials for configuration.

    • Token: provide a token for configuration.

  8. Choose a connection method to be HTTP or HTTPS.

  9. Select the appliance site in the environment from the drop down list.

  10. Optionally, you can add extra key-value pair parameters to pass to this configuration.

  11. Click the “Create Configuration” button.

    6__Create_third_party_configuration.png

    Note

    Click the “Cancel” button to forbid the action.

Modify existing configuration

You can edit, enable, disable and delete the existing integrations. Follow the procedure to edit the integration:

  1. Navigate to the Manage > Configurations menu.

  2. Select the integration configuration you want to modify from the right side window. You will see a “Edit configuration <name>” window.

  3. You can edit all the fields.

  4. Click on the “Save Configurations” button.

6__Modifuy_third_party_configuration.png

Note

Click on the Test button to test the configuration status.