Looking at some of the best practices, it is recommended to have read only access to accounts used for vulnerability scans.
I was wondering if someone can provide some guidance on how to accomplish this and are there any drawbacks to using this approach?
Thanks!