Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
 

Adding a Qualys Scheduled Import Asset Report

Add an asset report data import to schedule JSA to retrieve a single asset report from your Qualys scanner.

  1. Click the Admin tab.
  2. Click the VA Scanners icon.
  3. Click Add.
  4. In the Scanner Name field, type a name to identify your Qualys scanner.
  5. From the Managed Host list, select an option that is based on one of the following platforms:

    • On the JSA Console, select the managed host that is responsible for communicating with the scanner device.

  6. From the Type list, select Qualys Scanner.
  7. Configure the following parameters:

    Parameter

    Description

    Qualys Server Host Name

    The Fully Qualified Domain Name (FQDN) or IP address of the QualysGuard management console. If you type the FQDN, the host name and not the URL, for example, type qualysapi.qualys.com or qualysapi.qualys.eu.

    Qualys Username

    The user name that you specify must have access to download the Qualys KnowledgeBase. For more information about how to update Qualys subscription, see your Qualys documentation.

    Qualys Password

    The password for your Qualys login.
  8. Optional: To configure a proxy, select the Use Proxy check box and configure the credentials for the proxy server.
  9. Optional: To configure a client certificate, select the Use Client Certificate check box and configure the Certificate File Path field and Certificate Password fields.
  10. From the Collection Type list, select Scheduled Import - Asset Data Report.
  11. Configure the following parameters:

    Parameter

    Description

    Report Template Title

    The report template title to replace the default asset data report title.

    Max Reports Age (Days)

    Files that are older than the specified days and time stamp on the report file are excluded when the schedule scan starts.

    Import File

    The directory path to download and import a single asset report from Qualys. If you specify an import file location, JSA downloads the contents of the asset report from Qualys to a local directory and imports the file. If you leave this field blank or if the file or directory cannot be found, the Qualys scanner uses the API to retrieve the asset report by using the value in the Report Template Title field.
  12. Optional: To configure a CIDR range for your scanner, configure the CIDR range parameters and click Add.
  13. Optional: To enable JSA to create custom vulnerabilities from the live scan data, select the Enable Custom Vulnerability Creation check box and select options that you want to include.
  14. Click Save.
  15. On the Admin tab, click Deploy Changes. Changes to the proxy configuration require a Deploy Full Configuration.

Related Documentation