SN Qualys Integration

User179407 · ‎08-24-2020

Hello,

I have installed the Qualys Vulnerability Integration plugins.

I am trying to set it up using the Setup assistant.

I entered the Login credentials for Qualys, however when running the Knowledgebase and Host detetction scans I see the below errors in the error log.

Error: Invalid response code 403 received from Qualys

Can some one let me know what is this error for?

Thanks

Suraj

Stephen Laseau · ‎08-24-2020

Okay. SN setup should be something like:

Name: Qualys

Server URL: https://qualysapi.qg3.apps.qualys.com

Username: <login name>

Password: <password>

Be certain you have the correct fully qualifiedServer URL

If you are copying the password, make sure you are not picking up a trailing space.

View solution in original post

Chris McDevitt · ‎08-24-2020

Suraj,

Things I would check:

1. Do you have a white-list set up in Qualys? If so, you will need to add ServiceNow

2. Does Qualsy have your account set up to allow API access? (Some times it is turned off)

2. If you're out outside the US, you may need to uses a different URL:

https://www.qualys.com/platform-identification/

Go ahead and mark this as helpful or Correct!

User179407 · ‎08-24-2020

Hi Chris,

Thanks for your reply

1. we donot have whitelist setup in Qualys

2. Qualys user has API access (see below - user role is Scanner is it correct?)

3. we are in US.

Chris McDevitt · ‎08-24-2020

It is possible ( I have seen this before), that even though the user is set up to use the API the Qualys Business / Organization account does not have the ability enabled for your business.

Try this is Postman (replace with your IP):

User179407 · ‎08-24-2020

Hi Chris

thanks for your reply..

i tried using POSTMan and got the below...is it correct ?