Documentation
Start typing to search…

Qualys VMDR

Access Levels: Advanced | Enterprise

In Censys Attack Surface Management (ASM), you can connect your host association/dissociation Logbook events with Qualys Vulnerability Management Detection and Response (VMDR) to gain insight into your attack surface and exposures.

After configuring the integration, it will poll Attack Surface Management for new host association and host disassociation events in your ASM Logbook.

  • If a host is associated with your attack surface (via a host association event), it is sent to Qualys VMDR and added to your asset folder by default; this is called Censys ASM IPs.
  • If a host is disassociated from your attack surface (via a host disassociation event), it is removed from the asset folder.
  • Before adding a host to Qualys VMDR, the integration checks whether it already exists. If it does, it is not imported. If it does not exist, it is imported.

Prerequisites

  • You must have an active instance of the Qualys Cloud Platform and a subscription or license to Qualys VMDR.
  • In Qualys VMDR, you must create an asset group for the ASM IPs.
    • We recommend using the name Censys ASM IPs.

Configure the integration in Censys ASM

  1. Go to the Censys ASM web console, then click Integrations.

  2. Locate Qualys and click Set Up.

  3. On the Authentication page, configure the following:

    1. Username: Enter your Qualys username.
    2. Password: Enter your Qualys password.
    3. API Server URL: Enter your Qualys API server URL.
      1. Follow the Qualys documentation to confirm your URL.
    4. Vulnerability Management API version: Enter the API version to use.
      1. To find the API version:
        1. Go to your Qualys account and clickHelp > Resources > API Documentation.
        2. Search for Qualys API (VM, PC), then click the API user guide PDF.
        3. Navigate to the Authentication chapter to confirm the API version.
    5. Asset management and Tagging API version: Enter the API version to use.
      1. To find the API version:

        1. Go to your Qualys account and click Help > Resources > API Documentation.

        2. Search for Asset Mgmt and Tagging API, then click the API user guide PDF.

        3. Navigate to the Authentication chapter to confirm the API version.

  4. Click Connect, then click Next Step.

  5. Enter the Asset Group IP for the group you created in Qualys.

  6. Click Submit, then click Close.

Modify the integration

  1. Go to the Censys ASM web console and click Integrations.
  2. Locate Qualys and click Manage.
  3. Go through the setup wizard, as described in the section above, and make any necessary changes.

Verify that the assets appear in Qualys

  1. Go to Qualys and click Assets > Asset Groups.

  2. In the list of groups, find the one you created for the Censys ASM integration. Click next to the IP address for that asset group, then click Info.

  3. Click the tabs to learn more about the assets in the group.

Updated 18 days ago