Skip to main content
Skip table of contents

Qualys Global IT

What is Qualys Global IT?

Qualys Global IT (now called Global AssetView) uses a combination of Qualys sensors (agents, scanners, and passive network sensors) to discover assets ibn your environment and collect inventory information.

For more information about Qualys and Lucidum, see https://lucidum.io/qualys/.

Why Should You Use the Qualys Global IT Connector?

The Qualys Global IT connector provides visibility into all the assets in your environment. You can use this visibility to:

  • ensure assets are managed per your security policies

  • find vulnerabilities quickly and remediate

How Does This Connector Work?

Lucidum executes read-only requests to the Qualys Global IT API and ingests only meta-data about Qualys Global IT assets. Lucidum does not retrieve any data stored on your assets.

Configuring the Connector in Lucidum

Field

Description

Example

Host

The hostname of to access the Qualys API. Note that the host might have different hostnames in different regions (for complete Qualys API URLs, refer to https://www.qualys.com/platform-identification/ ). For example,

 

gateway.qg*.apps.qualys.com

User Name

User name for an account that has the Required Permissions to fetch assets.

Password

Password for the user account.

*******************

API Version

Version of the Qualys API that you are using

v1

Source Documentation

Creating a User Account

https://qualysguard.qg2.apps.qualys.com/qwebhelp/fo_portal/user_accounts/win_user.htm

You must create a user account with API access. Lucidum will use this user account to access Qualys.

From Qualys Administration utility, go to Users > User Management > Create User.

After creating the user account, click the user account and select Actions > Edit. Then go to Roles and Scopes and select the Allow user full permissions and scope checkbox.

To enable user access to the API:

  1. From Qualys Administration utility, click the user button next to the Logout -> User Profile.

  2. The Edit User screen opens. Click User Role -> select the API checkbox to enable API Access.

  3. Save changes.

Required Permissions

https://docs.qualys.com/en/gav/latest/#t=get_started%2Froles_permissions.htm

The value supplied in User Name must be associated with one of the following user roles and with the following permissions:

  • Manager role with full scope.

  • Reader role with full scope.

  • Non-manager role with the following permissions:

    • Access Permission "API Access".

    • Asset Management Permission "Read Asset".

    • Requested asset in their scope.

API Documentation

https://www.qualys.com/docs/qualys-global-ai-api-user-guide.pdf

https://www.qualys.com/docs/qualys-gav-csam-api-v2-user-guide.pdf

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close