Connecting to Qualys
Concept Information
Qualys is a cloud-based suite of security and compliance solutions that help organizations to simplify their security operations. Use the Qualys data connector to import your company's Qualys data.
Before you start
To connect to Qualys, you must gather the following:
- the Qualys server's host name or IP address
- user name and password
- the import mode to import data from Qualys
- the Asset(s) being scanned
-
unique scan reference ID for a specific scan
For help gathering the connection prerequisites, contact the Qualys administrator in your organization. If your administrator cannot help you, you or your administrator should contact Qualys Support.
Create a Qualys connection
- From the Analytics main menu, select Import > Database and application.
- From the New Connections tab, in the ACL Connectors section, select Qualys.
Tip
You can filter the list of available connectors by entering a search string in the Filter connections box. Connectors are listed alphabetically.
- In the Data Connection Settings panel, enter the connection settings and at the bottom of the panel, click Save and Connect.
You can accept the default Connection Name, or enter a new one.
The connection for Qualys is saved to the Existing Connections tab. In the future, you can reconnect to Qualys from the saved connection.
Once the connection is established, the Data Access window opens to the Staging Area and you can begin importing data. For help importing data from Qualys, see Working with the Data Access window.
Connection settings
Basic settings
| Setting | Description | Example |
|---|---|---|
| Server | The host name or IP address of the Qualys server. | |
| User | The Qualys user account to authenticate against the Qualy server. | |
| Password | The password used to authenticate the user with the server. | |
| Mode | Specifies the import mode to use when importing data from Qualys. The options available are:
|
Import Vulnerabilities by Asset Group |
| Asset |
Allows you to specify the Asset(s) to scan and import data from. To select an Asset, you must provide values for the Server, User, and Password fields and select Import Vulnerabilities by Asset Group in the Mode field. You must click the Select Asset button to get the list of assets and to select multiple assets, you can use the CTRL key. |
|
| Filter |
Allows you to select a default or custom date filter. The options available are:
|
Last 7 days |
| Processed After |
Allows you to import data processed after a specified date. This field is enabled only when Date Processed is selected in the Filter field. |
2019-08-17 |
| Processed Before |
Allows you to import data processed before a specified date. This field is enabled when you select Date Processed in the Filter field. |
|
| Filter By |
To filter data by Date Published or Date Modified. This field is enabled when you select Import KnowledgeBase in the Mode field. |
Date Published |
| Before | To filter the output to show vulnerabilities published or modified before a certain date. | |
| After | To filter the output to show vulnerabilities published or modified after a certain date. | |
| Scan Reference ID |
Allows you to specify the scan to import. To select a scan, you must provide values for the Server, User, and Password fields and select Import scan by scan reference id in the Mode field. You must click the Select Scanbutton to get the list of scans available. |
Advanced settings
| Setting | Description | Example |
|---|---|---|
| Enable Proxy | Specifies whether to use a proxy server. | |
| Proxy User | The user name to authenticate to the proxy server. | john_doe@example.com |
| Proxy Password | The password to be used with the Proxy User to authenticate to the proxy server. | |
| Proxy Server | The hostname or IP address of a proxy server. | 206.174.193.116 |
| Proxy Port | The port the proxy server is running on. |
