- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-16-2022 03:17 PM
Hello,
I closed-Ignored the vulnerability in Qualys manually for a reason.
When i ran the Host Detection Integration that particular VIT still shows as Active - Open in Servicenow
Should the Integration set it to Close state in Servicenow too? we are in Qualys Integration v12.1.1
below Screen from Qualys
Thank you
Solved! Go to Solution.
- Labels:
-
Vulnerability Response

- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-17-2022 07:44 AM
Hey there - you will need to think about your workflow / process differently here.
You are not able to manage "Qualys Tickets" in Qualys, in a way that reflects onto Vulnerable Items and Detections in ServiceNow.
The Qualys API exposes the Qualys Host Detections from Qualys as either, 'NEW, ACTIVE, FIXED, REOPENED'.
You will want to look at changing your process, away from Qualys Tickets and --> towards Vulnerable Items, Detections, Remediation Tasks in ServiceNow Vulnerability Response.
In short - modifying Qualys Tickets will not influence the raw Qualys Host Detections used for this integration. You will want to transition away from Qualys Tickets and use the features ServiceNow Vulnerability Response to manage this process (e.g. Deferrals / Exceptions / False Positive)...

- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-16-2022 04:28 PM
Hi,
Take a look at the Detections. Is there more then one? Is there an open and a closed with different Detection Keys?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-16-2022 04:33 PM

- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-17-2022 07:44 AM
Hey there - you will need to think about your workflow / process differently here.
You are not able to manage "Qualys Tickets" in Qualys, in a way that reflects onto Vulnerable Items and Detections in ServiceNow.
The Qualys API exposes the Qualys Host Detections from Qualys as either, 'NEW, ACTIVE, FIXED, REOPENED'.
You will want to look at changing your process, away from Qualys Tickets and --> towards Vulnerable Items, Detections, Remediation Tasks in ServiceNow Vulnerability Response.
In short - modifying Qualys Tickets will not influence the raw Qualys Host Detections used for this integration. You will want to transition away from Qualys Tickets and use the features ServiceNow Vulnerability Response to manage this process (e.g. Deferrals / Exceptions / False Positive)...
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-21-2022 08:42 AM
thank you