Qualys Cloud Platform (VM, PC) v8.x Release Notes

Similar documents
Qualys Cloud Platform (VM, PC) v8.x API Release Notes

Qualys Cloud Platform (VM, PC) v8.x Release Notes

Qualys Cloud Suite Release Notes

Qualys Cloud Platform (VM, PC) v8.x Release Notes

Qualys Integration with CyberArk Application Identity Manager (AIM)

Qualys Release Notes

Security Configuration Assessment (SCA)

Qualys 8.7 Release Notes

How-to Guide: Tenable Nessus for Microsoft Azure. Last Updated: April 03, 2018

Integration Guide. LoginTC

Qualys Cloud Platform

Community Edition Getting Started Guide. July 25, 2018

Version 2.38 April 18, 2019

Load Balancing Web Servers with OWASP Top 10 WAF in AWS

Qualys Cloud Platform (VM, PC) v8.x Release Notes

Securing ArcGIS Server Services An Introduction

How-to Guide: Tenable.io for Microsoft Azure. Last Updated: November 16, 2018

Configuring Vulnerability Assessment Devices

Load Balancing Nginx Web Servers with OWASP Top 10 WAF in AWS

Qualys Cloud Suite 2.x

Policy Compliance. Getting Started Guide. November 15, 2017

Securing ArcGIS Services

Qualys Cloud Suite 2.30

Qualys API Release Notes

Load Balancing Web Servers with OWASP Top 10 WAF in Azure

Tenable.io for Thycotic

Establishing two-factor authentication with Juniper SSL VPN and HOTPin authentication server from Celestix Networks

Qualys Cloud Suite API Release Notes

ForeScout Extended Module for Qualys VM

Qualys SAML 2.0 Single Sign-On (SSO) Technical Brief

Load Balancing Nginx Web Servers with OWASP Top 10 WAF in Azure

Securing Amazon Web Services with Qualys. December 11, 2017

Certificate Enrollment for the Atlas Platform

Web Application Firewall Getting Started Guide. September 7, 2018

Google Authenticator User Guide

Tenable.sc-Tenable.io Upgrade Assistant Guide, Version 2.0. Last Revised: January 16, 2019

Qualys Cloud Suite 2.23

Rate Limit per Subscription (per API): Individual rate and count settings are applied (as per service level).

User guide NotifySCM Installer

Container-Native Applications

Configuring SSL. SSL Overview CHAPTER

Oracle Cloud Administering Oracle Event Hub Cloud Service Dedicated

Integration Guide. Auvik

Establishing two-factor authentication with Cisco and HOTPin authentication server from Celestix Networks

Centrify Identity Services for AWS

Qualys Cloud Platform

Cloud Native Security. OpenShift Commons Briefing

Establishing two-factor authentication with Barracuda SSL VPN and HOTPin authentication server from Celestix Networks

Single Sign-On for PCF. User's Guide

HashiCorp Vault on the AWS Cloud

Consulting Edition Getting Started Guide. October 3, 2018

Qualys SAML & Microsoft Active Directory Federation Services Integration

Administering Jive Mobile Apps for ios and Android

Cloud Agent for Unix Installation Guide Agent Version 1.6. February 5, 2018

Workspace ONE UEM Certificate Authentication for Cisco IPSec VPN. VMware Workspace ONE UEM 1810

epldt Web Builder Security March 2017

Introduction to ISE-PIC

AWS Remote Access VPC Bundle

Deploy and Secure an Internet Facing Application with the Barracuda Web Application Firewall in Amazon Web Services

ArcGIS Server and Portal for ArcGIS An Introduction to Security

PCI Compliance. Network Scanning. Getting Started Guide

Azure Archival Installation Guide

ForeScout Extended Module for Tenable Vulnerability Management

ENTRUST CONNECTOR Installation and Configuration Guide Version April 21, 2017

Sophos Mobile Control Network Access Control interface guide. Product version: 7

Security and Compliance Suite Rollout Guide. July 19, 2017

Qualys API Release Notes

VMware AirWatch Certificate Authentication for Cisco IPSec VPN

Configuring SSL CHAPTER

Office 365 and Azure Active Directory Identities In-depth

L105190: Proactive Security Compliance Automation with CloudForms, Satellite, OpenSCAP, Insights, and Ansible Tower

Table of Contents. Configure and Manage Logging in to the Management Portal Verify and Trust Certificates

CloudView User Guide. June 8, 2018

Partner Center: Secure application model

Configuring SSL. SSL Overview CHAPTER

Using the Cisco ACE Application Control Engine Application Switches with the Cisco ACE XML Gateway

IMPLEMENTING SINGLE SIGN-ON (SSO) TO KERBEROS CONSTRAINED DELEGATION AND HEADER-BASED APPS. VMware Identity Manager.

Qualys Cloud Platform

Integration Guide. SafeNet Authentication Service. SAS using RADIUS Protocol with WatchGuard XTMv. SafeNet Authentication Service: Integration Guide

Configuring User VPN For Azure

DCLI User's Guide. Data Center Command-Line Interface 2.9.1

HySecure Quick Start Guide. HySecure 5.0

Cloud Agent for Mac. Installation Guide. Agent Version December 22, 2017

DCLI User's Guide. Data Center Command-Line Interface 2.7.0

Azure Multi-Factor Authentication. Technical Note

Integration Guide. SafeNet Authentication Service (SAS)

Hypersocket SSO. Lee Painter HYPERSOCKET LIMITED Unit 1, Vision Business Centre, Firth Way, Nottingham, NG6 8GF, United Kingdom. Getting Started Guide

Azure Application Deployment and Management: Service Fabric Create and Manage a Local and Azure hosted Service Fabric Cluster and Application

Comodo Certificate Manager

Zephyr Cloud for HipChat

EMPOWER2018 Quick Base + Workato Workjam

LiveEngage Messaging Platform: Security Overview Document Version: 2.0 July 2017

AWS IoT Overview. July 2016 Thomas Jones, Partner Solutions Architect

How to configure the LuxCloud WHMCS plugin (version 2+) Version: 2.2

Security in the Privileged Remote Access Appliance

Exam : Implementing Microsoft Azure Infrastructure Solutions

Establishing secure connectivity between Oracle Ravello and Oracle Cloud Infrastructure Database Cloud ORACLE WHITE PAPER DECEMBER 2017

VMware AirWatch Content Gateway for Linux. VMware Workspace ONE UEM 1811 Unified Access Gateway

Alliance Key Manager AKM for AWS Quick Start Guide. Software version: Documentation version:

How to Set Up External CA VPN Certificates

Transcription:

Qualys Cloud Platform (VM, PC) v8.x Release Notes Version 8.18.1 April 1, 2019 This new release of the Qualys Cloud Platform (VM, PC) includes improvements to Vulnerability Management and Policy Compliance. Qualys Cloud Platform Support for HashiCorp Vaults Virtual Scanner Appliance Support for OCI and OCI-Classic Platforms Qualys 8.18.1 brings you many more improvements and updates! Learn more Copyright 2019 by Qualys, Inc. All Rights Reserved. 1

Qualys Cloud Platform Support for HashiCorp Vaults This new vault type can be used to retrieve authentication credentials from a HashiCorp vault. What are the steps? You ll configure HashiCorp vaults (vault credentials), configure authentication records for Windows, Cisco and Unix authentication types, and start your scans. Configure your HashiCorp Vault Go to Scans > Authentication > New > Authentication Vaults. Then choose New > HashiCorp. Provide vault credentials. URL The HTTP or HTTPS URL to access the HashiCorp Vault HTTP API. SSL Verify Applies when the URL uses HTTPS. We ll verify the SSL certificate of the web server to make sure it s valid and trusted, unless you clear (un-check) this option. API Version The HashiCorp Vault HTTP API version. This is v1 by default, which is the only supported version. Auth type First choose the authentication method you want to use (Username/Password, Cert or App Role) and then provide login credentials for authenticating to the vault server via the HashiCorp Vault HTTP API. Qualys Release Notes 2

For Auth type Username/password, specify the path for the Username/Password authentication method, username that can access the vault server and password of the user account. The default path is /auth/userpass. For Auth type Cert, specify the path for the Cert authentication method, role associated with CA certificate, client certificate for authentication, private key for authentication and passphrase if the private key is encrypted. The default path is auth/cert. Qualys Release Notes 3

For Auth type App role, specify the path for the App role authentication method, role ID and secret ID of the App role you want to use for authentication. The default path is auth/approle. Configure authentication records The HashiCorp vault is supported in Cisco, Windows and Unix authentication records. Here s a sample Windows record with the vault selected. Provide these settings: Vault Type HashiCorp Vault Title Your vault record. Path The path of the secret engine. The default is secret. Name The secret name which stores the keyvalue pairs. Key The key name for identifying a specific key-value pair. Qualys Release Notes 4

Virtual Scanner Appliance Support for OCI and OCI-Classic Platforms We now support Qualys Virtual Scanner Appliance for Oracle Cloud Infrastructure (OCI) and Oracle Cloud Infrastructure Classic Compute (OCI-Classic). To download virtual scanner images from the Qualys UI, go to New > Virtual Scanner. Then click Download under "Download Image Only". You'll see the list of Available Distributions including the new Oracle Cloud Marketplace Image for OCI and OCI-Classic. Based on the platform you want to use for the appliance, follow the appropriate link to go directly to the Qualys Virtual Scanner Appliance page in the Oracle Cloud Marketplace. The distribution list screen on the left highlights the new distribution for OCI and OCI-Classic platforms. Qualys Release Notes 5

Issues Addressed We fixed an issue where an error was getting generated while changing ownership of the asset group from Manager to Scanner user. In PC, we have fixed an issue where in case of an empty directory, posture for a control was showing failed value even if the expected value matches the actual value returned after the scan. Now the control shows a "Passed" value if the expected value matches the actual value. The app picker shows all apps available to you, including apps that you're trying out. These apps have a TRIAL label next to them in the picker. We fixed an issue where TRIAL was not always showing up depending on the app you were in when accessing the app picker. We fixed an issue with the Subscription API (/api/2.0/fo/subscription/?action=export) where the XML response was not rendered correctly and 403 Forbidden was returned. The AWS User Guide and online help is updated to reflect details of the recommended limits for the Qualys Virtual Scanner Appliance. We have updated the Windows Authentication document to mention the registry key where the host ID is stored for agentless tracking of hosts. Qualys Release Notes 6

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback