Skip to content

How to Customize Scanner Rulesets for a Policy

BoostSecurity allows you to customize scanner rulesets to align with your security policies. You can disable all rules, selectively enable specific rules, acknowledge rules that are not considered for a scanner, and re-enable all rules at once. This guide outlines the customization process.

Accessing the Scanner Ruleset

  1. Navigate to the Policy page.

  2. Select an existing policy or create a new policy.

    Note

    You cannot modify scanner rules for built-in policies.

  3. Click on the Scanners tab.

    Scanner

  4. Select the desired scanner and click the dropdown to display all associated rulesets.

    Scanner Ruleset

1. Disabling All Rules

To disable all rules for a scanner:

  1. Click the checkbox next to the scanner's name to uncheck all rules.

    Unselect all rules

  2. This action disables all scanner rules, moving the scanner to the Available Scanners tab. No rules will be enforced during scans.

    Scanner is now available

Warning

Disabling all rules may affect security enforcement and compliance.

2. Selecting Specific Grouped Rules

To enable only certain rules that belong to a group:

  1. Manually check the boxes next to the grouped rules you want to enable.

    Select grouped rules

  2. The selected rules will be enforced during scans. Each group contains multiple rules; selecting a group enables all rules within it.

  3. You can modify these selections at any time.

3. Selecting Individual Rules within a Group

To customize a grouped ruleset by enabling only specific rules:

  1. Expand the group to display all contained rules.

  2. Select or deselect individual rules as needed.

    Select Rules in Group

  3. The selected rules will be enforced during scans.

4. Acknowledging Rules Not Considered for a Scanner

If a scanner is marked with a dash (-) icon, it indicates that certain rules are not considered for the scanner, meaning some rules have been deselected.

Unavailable Scanners

5. Re-Enabling All Scanner Rules

To restore all rules for a scanner:

  1. Click the checkbox next to a scanner marked with a dash (-) icon to deactivate it.

    Deactivate Scanner

  2. This moves the scanner to the Available Scanners tab.

    Available Scanners

  3. Click the checkbox again to re-enable all rules, moving the scanner back to the Active Scanners tab.

    Active Scanner

  4. All scanner rules will be reapplied.

By customizing the scanner ruleset, you can ensure that only relevant rules are enforced, balancing security and operational efficiency.