Host Detection CIs created by Qualys

Go to solution
Khanna Ji
Tera Guru

‎01-19-2019 12:10 AM

Host Detecton CIs created by qualys for vulnerability response module integration are available for selection to the other ITSM modules also or only for vulnerability application?

  • 1,109 Views
1 ACCEPTED SOLUTION

Go to solution
Chris McDevitt
ServiceNow Employee
ServiceNow Employee

‎01-19-2019 01:00 PM

When the Qualys Hosts Detection Integration runs, the imported data is run through the CI Identifier Rules found under the Security Operations section of the tool. If a Qualys Host does not match a CI Identifier Rules then a new entry is made in the CMDB under Qualys CI [sn_vul_qualys_ci which is extended from Hardware].

Everything in the CMDB is available to the rest of the platform including Qualys CIs. Now, with that said, the best practice is to have a plan in place to handle the Qualys CI's. Some of the Qualys CI's will need to be re-classified into their proper CMDB classes (for example servers or workstations). Some of the items, like IP Phones, the customer may choose to leave in the Qualys CI class.

In any event, the Qualys Host Discovery is a nice addition to ServiceNow Discovery to help identify new items that you may have missed during your discovery planning.

Please mark this as correct or useful if this helps you so others can benefit from our discussion.

View solution in original post

0 Helpfuls
5 REPLIES 5

Go to solution
Khanna Ji
Tera Guru
In response to Chris McDevitt

‎01-21-2019 08:29 AM

I have used both and I personally think both are not required. When you have Qualys integration with ServiceNow for vulnerability management there no need to buy CMDB sync app.

0 Helpfuls