Environment  

Aqua CSP 
 

Deployment Task  

This should help to understand how to integrate Qualys in Aqua CSP and what this integration provides to our solution 

  

Deployment Steps  


In order to integrate we will need the below, 


1) The actual URL API towards we will connect, usually this will be different from your Qualys web URL and it should be available by log in in Qualys and checking the tab 'About',

(* This should be checked with your Qualys administrator or representative)


2) An user and password, that can access to the Qualys API  

(* This should be checked with your Qualys administrator or representative)


Once we have this in our GUI,



It will happen the below, 


1) We just fetch the Quays IDs. 


2) This action happens every single time you click "save" after write the correct credentials on your GUI and daily at 4AM (local server time)


3) We use the Qualys feed as Data Enrichment, basically adding the additional Qualys IDs to our regular CVE classification to increase the analytical value of the same when this information is forwarded to any supported third party SIEM or logging solution.  


4) This IDs will be visible in Aqua CSP pages such as Vulnerabilities and scan results, or when exported vulnerability reports from Aqua CSP