Hi everyone,
I’m new to OpenVAS, so please bear with me as I figure things out! Here’s the setup I’m working with:
Environment Details:
OS: Kali GNU/Linux Rolling (Release 2024.4)
Tools:
Greenbone Community Edition
Greenbone Vulnerability Manager 23.10.0
OpenVAS 23.9.0
Greenbone Security Assistant 22.12.0
OSP Server for OpenVAS: 22.7.1
I’ve read through some older forum posts on this topic, but most of them were over three years old and left me more confused than before. So I decided to ask directly for some guidance.
My Goal:
We have two offices and would like to set up a centralized Greenbone Vulnerability Management (GVM) system, similar to a Master-Sensor architecture.
My Plan:
Deploy two virtual machines (VMs):
One in my office (on my subnet) running a scanner and GVM (standard installation).
Another in the second office, acting as a scanner only.
From what I’ve read, the second VM in the remote office should be configured as “just ospd-openvas.”
Questions:
- Would this setup work as intended?
- How should I connect the second scanner to my GVM? (Since the GUI hasn’t an option “add a scanner”.)
- Have I missed something in the documentation that could clarify this process?
Is it possible to reach my goal with the GCE or do i going to need an Enterprise License to implement this kind of setup?
Thanks in advance for your help! I really appreciate any advice or suggestions.
Cheers!