Skip to main content

Launch And Fetch Compliance Report - Qualys

Supported versions

Supported Cortex XSOAR versions: 5.5.0 and later.

Launches a compliance report and fetches the report when it's ready.

Dependencies#

This playbook uses the following sub-playbooks, integrations, and scripts.

Sub-playbooks#

GenericPolling

Integrations#

QualysV2

Scripts#

This playbook does not use any scripts.

Commands#

  • qualys-report-launch-compliance
  • qualys-report-fetch

Playbook Inputs#


NameDescriptionDefault ValueRequired
template_idThe template ID of the report you want to launch. Can be found by running the command qualys-report-template-list.Required
output_formatOne output format may be specified. When output_format=pdf is specified, the Secure PDF Distribution may be used.Required
report_titleA user-defined report title. The title may have a maximum of 128 characters. For a PCI compliance report, the report title is provided by Qualys and cannot be changed.Optional
hide_header(Valid for CSV format report only). Specify hide_header=1 to omit the header information from the report. By default this information is included.Optional
recipient_group_idThe report recipients in the form of one or more distribution group IDs. Multiple distribution group IDs are comma separated. Where do I find this ID? Log in to your Qualys account, go to Users > Distribution Groups and select Info for a group in the list.Optional
pdf_password(Required for secure PDF distribution, Manager or Unit Manager only) Used for secure PDF report distribution when this feature is enabled in the user's account (under Reports > Setup > Report Share). The password to be used for encryption.
- The password must have a minimum of 8 characters (ascii), and a maximum of 32 characters
- The password must contain alpha and numeric characters
- The password cannot match the password for the user’s Qualys account.
- The password must follow the password security guidelines defined for your subscription (under Users > Setup > Security)
Optional
recipient_groupUsed for secure PDF distribution. The report recipients in the form of one or more distribution group names, as defined using the Qualys UI. Multiple distribution groups are comma separated. A maximum of 50 distribution groups may be entered.Optional
ips(Optional for compliance report) For a compliance report (except a PCI report), specify the IPs/ranges you want to include in the report. Multiple IPs and/or ranges are comma separated.Optional
asset_group_ids(Optional for compliance report) For a compliance report (except a PCI report), specify asset groups IDs which identify hosts to include in the report. Multiple asset group IDs are comma separated. Looking for asset group IDs? Use the asset_group_list.php function (in the API v1 User Guide).Optional
report_refsFor a PCI compliance report, either the technical or executive report, this parameter specifies the scan reference to include. A scan reference starts with the string “scan/” followed by a reference ID number. The scan reference must be for a scan that was run using the PCI Options profile. Only one scan reference may be specified. Reference can be found by running the command qualys-pc-scan-list.Optional

Playbook Outputs#


There are no outputs for this playbook.

Playbook Image#


Launch And Fetch Compliance Report - Qualys