Configure the Qualys Vulnerability Integration using Setup Assistant

  • リリースバージョン: Australia
  • 更新日 2026年03月12日
  • 所要時間:6分

    • After you have installed the Qualys application, configure it using the Setup Assistant.

    始める前に

    Use the following sections to supplement the instructions and prompts provided in Setup Assistant for configuration of the Qualys Vulnerability Integration.

    Roles required: System admin (admin) for installation, Vulnerability Admin (sn_vul.vulnerability_admin) or sn_vul.admin (deprecated) for configuration.

    手順

    1. Navigate to All > Vulnerability Response > Administration > Setup Assistant > Integration Configuration > Scanner Integrations.
      The installed integrations are displayed.
    2. Click Edit to the right of the Qualys Vulnerability Integration you want to configure.
    3. In the Account Credentials form, enter your Qualys Cloud Platform credentials.
      Your credentials are required to configure it.
    4. Use the following notes as a guide as you continue with the configuration.
      • The Advanced Settings link points you to the Qualys Integration record. You can add parameters that are supported by the Qualys product for your scheduled queries to help you filter the vulnerability data you import. See Set additional filter parameters for Qualys imports for more information.
      • If you have upgraded from an earlier version of Vulnerability Response with a version of the Qualys Vulnerability Integration you've already configured, that version, with its configuration settings preserved, is still available.

        Under Import Settings in Host Detection Configuration for the Qualys Vulnerability Integration, there is an option to view fixed Qualys vulnerability detection records. If enabled, this permits you to create vulnerable items from detection records in a fixed status (state=Fixed). For more information on vulnerable item detections, see Vulnerability Response vulnerable item detections from third-party integrations.

        You can activate the Lookup By Network Partition check box on the Host Detection Configuration page to include the network partition identifier in the IP address lookup. See Update configuration items with the network partition identifier for the Qualys Vulnerability Integration for more information.

        All host tags are imported as part of the Qualys Host List integration. Host tags are used primarily for filtering in Vulnerability Response Assignment and Remediation Task Rules. They are displayed in the Discovered Item form.
        注:
        The Qualys Host List integration should be run prior to creating Assignment or Remediation Task Rules in Vulnerability Response so that all tags can be present in the rules and before vulnerable items are imported and grouped.

        Qualys Asset Tags are stored in the Host Tags module under the Qualys Vulnerability Integration.

      • The Qualys Vulnerability Integration supports multi-source. You can have multiple deployments of the same third-party integration. To add another integration, on the Scanner Integrations page, click Add Integration.
        The settings from your original third-party integration are used as a template for the settings of each new integration.
        注:
        If you delete the original vulnerability integration, you have to select another integration to use as your template. Consider disabling the integration instead of deleting it. Integrations created from disabled templates are disabled by default.

        Data from each third-party integration is uniquely identified and available in a single instance of Vulnerability Response.

      • You can execute imports on-demand by clicking Execute Now on a configuration page.
    5. Click Finish to complete the configuration in Setup Assistant.