Supported Cortex XSOAR versions: 5.5.0 and later.
Launches a remediation report and fetches the report when it's ready.
This playbook uses the following sub-playbooks, integrations, and scripts.
This playbook does not use any scripts.
|template_id||The template ID of the report you want to launch. Can be found by running the command qualys-report-template-list.||Required|
|output_format||One output format may be specified. When output_format=pdf is specified, the Secure PDF Distribution may be used.||Required|
|report_title||A user-defined report title. The title may have a maximum of 128 characters. For a PCI compliance report, the report title is provided by Qualys and cannot be changed.||Optional|
|hide_header||(Valid for CSV format report only). Specify hide_header=1 to omit the header information from the report. By default this information is included.||Optional|
|recipient_group_id||The report recipients in the form of one or more distribution group IDs. Multiple distribution group IDs are comma separated. Where do I find this ID? Log in to your Qualys account, go to Users > Distribution Groups and select Info for a group in the list.||Optional|
|pdf_password||(Required for secure PDF distribution, Manager or Unit Manager only) Used for secure PDF report distribution when this feature is enabled in the user's account (under Reports > Setup > Report Share). The password to be used for encryption. - the password must have a minimum of 8 characters (ascii), and a maximum of 32 characters - the password must contain alpha and numeric characters - the password cannot match the password for the user’s Qualys account. - the password must follow the password security guidelines defined for your subscription (under Users > Setup > Security)||Optional|
|recipient_group||Used for secure PDF distribution. The report recipients in the form of one or more distribution group names, as defined using the Qualys UI. Multiple distribution groups are comma separated. A maximum of 50 distribution groups may be entered.||Optional|
|ips||Specify IPs/ranges to change (override) the report target, as defined in the patch report template. Multiple IPs/ranges are comma separated. When specified, hosts defined in the report template are not included in the report. See also “Using Asset Tags.”||Optional|
|asset_group_ids||Specify IPs/ranges to change (override) the report target, as defined in the patch report template. Multiple asset group IDs are comma separated. When specified, hosts defined in the report template are not included in the report. Looking for asset group IDs? Use the asset_group_list.php function (see the API v1 User Guide).||Optional|
|assignee_type||Specifies whether the report will include tickets assigned to the current user, or all tickets in the user account. By default tickets assigned to the current user are included. Valid values are: User (default) or All.'||Optional|
There are no outputs for this playbook.