Skip to main content

Qualys Vulnerability Management

This guide walks you through creating a Qualys Vulnerability Management Connector.

Configure New User for Integration

1. Log in to Qualys Vulnerability Management as an Administrator

An Admin in Qualys is a user assigned either the Manager or Unit Manager role. This Admin user can then create additional users, including a service user in our case, which will be linked to an email account that remains active even after the employee leaves the company.

  • After logging in, navigate to the Vulnerability Management product and click the Users option from the top menu (located toward the right side).
  • In the Users interface, click New > User, which will open a modal titled New User.
  • Under the General Information section on the left, provide the required details, including First Name, Last Name, Title, Phone, Email Address, Address 1, and Country.
  • In the User Role section, ensure the Reader role is selected for the user's role. This role provides the necessary API access for the connector. Note that when selecting the Reader role, the API box will appear unchecked and disabled, but API access is still granted.
  • Under Asset Groups on the left, click the Add Asset Groups dropdown and select either All or the specific asset group(s) needed.
  • Click the Save button located at the far right corner of the modal to create the user account.
  • Note the new entry for the newly created user, which will display the randomly generated username for this account.
  • Finally, log out of the current account and log in using the newly created user credentials.

2. Complete Service Account Registration for Service Integration

  • The registered email address will receive a message containing a link to begin the user registration process. Note the OTP code provided in the email, as you will need it on the next screen.
  • Follow the prompts to complete the registration, and you will receive a password for the account. Note: If you lose this password, follow the Forgot Password steps.
  • On the same screen, you will find the base URL for UI and API access. Alternatively, you can look up your API server URL in the Qualys API URL reference.
  • Using the username from Step 1 and the password from Step 2, you can now log in to the Qualys Vulnerability Management UI.

Configure the Connector Profile in ASCERA

Create your integration by providing all required values.

  1. Base URL: Obtained in Step 2.
  2. Username: Obtained in Step 1.
  3. Password: Obtained in Step 2.