Associate a Qualys Test Result with its Test Group in Configuration Compliance

  • Freigeben Version: Australia
  • Aktualisiert 12. März 2026
  • 2 Minuten Lesedauer

    • Create Tests and Test Results in Configuration Compliance with mapping to the Qualys Test Group.

    Vorbereitungen

    Role required: admin

    Warum und wann dieser Vorgang ausgeführt wird

    Qualys maintains a default library of policies and controls while enabling the creation of custom policies and controls. These controls can be mapped to a policy, providing a comprehensive framework for evaluating the security posture of IT assets. When evaluated for an asset, the policy generates Qualys postures, which are transformed into Test Results in Configuration Compliance. A control mapped to a Qualys policy differs from the default control present in the Qualys library. This allows for the flexibility to define attributes such as Criticality, Status (Active or Inactive), and Technology for the control at the policy level.

    Previously, in Configuration Compliance, the Tests are typically created for Qualys library controls rather than the controls mapped to the Qualys policies. The Test Results refer to the Tests with no Test Group mapping. Therefore, there might be fewer Test Results in Configuration Compliance compared to postures in Qualys.

    To create Tests and Test Results in Configuration Compliance with mapping to the Test Group, a new column, ‘Test Group’ has been added at the Test level. The population of this column is controlled by the system property sn_vulc.add_policy_as_key. Once this system property is enabled, Configuration Compliance creates Tests for both library controls (Test Group will be empty) and controls mapped to the policies (Test Group will be policy ID). The Test Results refer to the Tests with policy mapping.

    To ensure that all Test Results are migrated to the new Tests with the Test Group mapping:

    Prozedur

    1. Enable the sn_vulc.add_policy_as_key system property.
      1. In the filter navigator, type sys_properties.list to display the list of system properties for your instance.
      2. Search for the sn_vulc.add_policy_as_key system property and open it.
      3. Select the link in the warning message to edit the system property.
      4. Set the Value field to True to enable the sn_vulc.add_policy_as_key system property.
    2. Wahlweise: For customers with existing data (Tests, and Test Results) in Configuration Compliance:
      1. Clear the Start Time field for the sn_vulc.add_policy_as_key system property.
      2. Run the integrations in the following order:
        • Qualys PC Policies
        • Qualys PC Controls
        • Qualys PC Policies Detail
        • Qualys PC Results/Qualys PCRS Test Results Integration
    3. Verify the following:
      • After running Qualys PC Policies, check if new Tests are created with Test Group reference.
      • After running Qualys PC Results/Qualys PCRS Test Results Integration, ensure all Test Results point to a new Test with a populated Test Group reference.

    Ergebnisse

    • New Tests are created with a reference to the Test Group. The Test Group related list isn’t populated for the new Tests. The new Tests will be based on the controls mapped to policies in Qualys, reflecting the Criticality, Status (active or inactive), and Technology of the control at the policy level.
    • Test without the Test Group reference reflects the controls in the Qualys library.
    • All Test Results point to the new Tests with Test Group mapping. A Test Group for a Test Result can be identified by dot-walking to the associated Test.