Skip to main content

Run a single cloud scan

Use Discovery cloud scan to scan your public domains. A Discovery cloud scan stores results for 8 hours. Set up a scan to get the certificate information installed on your server.


A cloud scan discovers and scans only public-facing TLS/SSL certificates using default TLS/SSL protocols, which is TLSv1.2 or higher.

  1. In your CertCentral account, in the left main menu, go to Discovery > Manage Discovery.

  2. On the Manage scans page, in the scans table, select Single cloud scan.

  3. On the Configure cloud scan page, set up your cloud scan:

    1. Enable deep scan (Optional)

      A deep scan includes the cipher suite scan, HTTP header scan, and TLS/SSL protocols (SSLv3, SSLv2, TLSv1.1, and TLSv1.0) used for the handshake. It also includes the default TLS/SSL protocols (TLSv1.2 or higher).

      Note: If a deep scan is enabled, it increases the scan time by several minutes.

    2. Scan critical TLS/SSL server issues (Optional)

      Enable this scan to discover critical TLS/SSL server issues such as Heartbleed, Poodle (SSLv3), FREAK, Logjam, DROWN, RC4, and POODLE (TLS).

      For more information about these TLS/SSL issues, see TLS/SSL endpoint vulnerabilities.

    3. Ports

      Cloud scan only supports port 443 to scan your network for TLS/SSL certificates.

    4. IP/FQDN to scan

      Currently, cloud scan supports only IPv4 scanning.

      IncludeEnter the public-facing FQDNs and IP addresses you want to include in the scan. Select Include.

      Include an FQDN (, a single IP address (, a range of IP addresses (, or an IP range in CIDR format (

      ExcludeEnter the public IP address you want to exclude from a range of IP addresses. Select Exclude.

      Exclude a single IP address ( or a range of IP addresses (, or an IP range in CIDR format (

      Import from CSVTo import a CSV file containing a list of public FQDNs and IP addresses you want to scan, select Import from CSV.

  4. Select Save and run.

What's next

Your single cloud scan stores result for 8 hours. To view scan results, in the left main menu, go to Discovery > View results.

Related topic: