Service Graph Connector for Qualys

  • Release version: Xanadu
  • Updated January 30, 2025
  • 3 minutes to read
    • Summarize
    Summarized using AI
    This content was generated using new OpenAI-powered functionality. Results are provided on an as is basis and are not guaranteed to be accurate or complete.

    Summary of Service Graph Connector for Qualys

    The Service Graph Connector for Qualys enables ServiceNow customers to import asset inventory data, including hardware and software information, from the Qualys database into the Configuration Management Database (CMDB) within their ServiceNow AI Platform® instance. This integration supports effective management of Qualys assets directly from ServiceNow, enhancing visibility and control over your asset ecosystem.

    Show full answer Show less

    Key Features

    • Supported APIs: Integration uses the Qualys Global Asset API v2, recommended for Security Posture Control applications, and optionally the Qualys Asset Management API v2 (deactivated by default, used only if the Qualys CSAM product is not accessible).
    • ServiceNow Compatibility: Supported on Utah, Vancouver, and Washington releases.
    • Use Cases: Complements Qualys Asset Discovery by importing detailed asset data and supports multi-instance configurations.
    • Guided Setup: Provides an organized, step-by-step configuration process within ServiceNow for seamless integration setup.
    • CMDB Integrations Dashboard: Offers a centralized dashboard to monitor integration status, processing results, and errors with filtering by integration, time, or run instance.
    • CI Mapping Rules:
      • Hardware CI Rules: Uses hardware category criteria from Qualys API data to map hardware assets to the correct target CI class during import.
      • Computer CI Rules: Applies predefined rules based on OS characteristics and other criteria to assign the appropriate computer CI class.
      • Asset Management CI Rules: Utilizes rules involving OS, volume info, processor presence, and cloud provider details to determine asset CI classification.
    • Reconciliation Rules: To update CI attributes, customers must define reconciliation rules that govern which discovery sources are authorized to update CI data, ensuring data consistency and accuracy.

    Key Outcomes

    By implementing the Service Graph Connector for Qualys, ServiceNow customers can expect:

    • Enhanced asset visibility by consolidating Qualys hardware and software inventory directly into the ServiceNow CMDB.
    • Improved data accuracy with tailored CI mapping and reconciliation rules aligning imported Qualys data with ServiceNow’s CMDB schema.
    • Streamlined integration management and monitoring through the CMDB Integrations Dashboard, facilitating proactive issue resolution.
    • Flexibility to support multiple instances and varied use cases such as security posture management and asset discovery enhancement.

    The Service Graph Connector for Qualys pulls in asset inventory data (hardware and software) from the Qualys database into the Configuration Management Database (CMDB) application in your ServiceNow AI Platform® instance.

    Request apps on the Store

    Visit the ServiceNow Store website to view all the available apps and for information about submitting requests to the store. For cumulative release notes information for all released apps, see the ServiceNow Store version history release notes.

    Supported versions

    Use this data to manage your Qualys resources directly from your ServiceNow AI Platform® instance.

    Supported Qualys APIs:
    • Qualys Global Asset API v2. You might prefer to use this API if you are importing data for the Security Posture Control Security Posture Control application.
    • Qualys Asset Management API v2. This API is deactivated by default. You should only activate this API if you don't have access to the Qualys Cybersecurity Asset Management (CSAM) product. ServiceNow uses a different API (Asset management and tagging) for this API but the data returned is not comprehensive.
    Supported ServiceNow® versions:
    • Utah
    • Vancouver
    • Washington

    Use cases

    The following are examples on how you can use the Service Graph Connector for Qualys for different ServiceNow applications:

    • Complements the Qualys Asset Discovery.
    • Import data with the Global Asset API or the Asset Management API.
    • Multi-instance support.

    Guided Setup

    The guided setup for the Service Graph Connector for Qualys provides you with an organized sequence of tasks to configure the integration on your instance.

    CMDB integrations dashboard

    The Integration Commons for CMDB store app provides a dashboard with a central view of the status, processing results, and processing errors of all installed integrations. You can see metrics for all integration runs. You can filter the view to a specific CMDB integration, a specific time duration, or a specific integration run. For more details about monitoring Qualys integrations in the CMDB Integrations Dashboard, see Using the CMDB Integrations Dashboard.

    Hardware CI Rules

    The hardware Configuration item (CI) mapping rule table is equipped with hardware category1, hardware category2 and corresponding target CI class. Following a Qualys API call, the system checks the hardware category1 and hardware category2 to determine their satisfaction, if hardware category1 and hardware category2 is match with the table record then the associated target CI class is added to the import set table data. During the mapping process, this designated target CI class is then utilized.

    Computer CI Rules

    The Computer CI Mapping Rule table is equipped with predefined rules, including criteria such as OS name, OS category, OS category 2, OS Publisher, OS Product name, and the corresponding target CI class. Following a Qualys API call, the system checks these rules to determine their satisfaction. If a rule is met, the associated target CI class is added to the import set table data. During the mapping process, this designated target CI class is then utilized.

    If you want to update CI attributes, you must create new reconciliation rules to determine which discovery sources can update CI attributes. See 'Reconciliation rules' in the online product documentation and the Identification and Reconciliation Fundamentals article in the ServiceNow Support Knowledge base for more information.

    Asset Management CI Rules

    The Asset Management CI Mapping Rule table is equipped with predefined rules, including criteria such as Operating System, Is Volume Info Present, Is processor Present, Cloud Provider and the corresponding target CI class. Following a Qualys API call, the system checks these rules to determine their satisfaction. If a rule is met, the associated target CI class is added to the import set table data. During the mapping process, this designated target CI class is then utilized.