A new release of Qualys Cloud Platform 10.0 (VM/PC) includes an updated API which is targeted for release in April 2020. The specific day will differ depending on the platform. See platform release dates on the Qualys Status page. This API notification provides an early preview into the coming API, allowing you to identify use cases that can leverage this updated API.
A note on v10, as part of our new VMDR offering QWEB (VM/PC) is being pushed to version 10. This releaase will include these new features and the prior features of 8.22.2 previously announced.
Thycotic Secret Server Vault Supported in Cisco and Checkpoint Firewall Records
Thycotic Secret Server vault is now supported in Cisco and Checkpoint Firewall authentication records. Cisco and Checkpoint Firewall are sub-types of Unix authentication and this vault is already supported in Unix authentication records. There are no DTD changes.
Launch/Schedule Vulnerability Scans on FQDNs
With this release you can launch and schedule vulnerability scans on Fully Qualified Domain Names (FQDNs). You’ll specify the input parameter “fqdn” during the scan request. This input parameter was previously only supported for CertView type vulnerability scans but now it’s available for all vulnerability scans.
Support for PostgreSQL Authentication on Windows Hosts
The PostgreSQL Authentication API (api/2.0/fo/auth/postgresql/) lets you list, create, update and delete PostgreSQL authentication records. User permissions for this API are the same as other authentication record APIs.
New Microsoft SharePoint Authentication API
Compliance scans now support Microsoft SharePoint authentication on Windows and Database hosts. The new Microsoft SharePoint Authentication API (api/2.0/fo/auth/microsoft_sharepoint/) lets you list, create, update and delete Microsoft SharePoint records. User permissions for this API are the same as other authentication record APIs. Microsoft SharePoint authentication is supported for Microsoft SharePoint versions 2010, 2013, 2016 and 2019.
New Pivotal Greenplum Authentication API
Pivotal Greenplum authentication is now supported for compliance scans on Unix hosts. The new Greenplum Authentication API (api/2.0/fo/auth/greenplum/) lets you list, create, update and delete Greenplum authentication records. User permissions for this API are the same as other authentication record APIs. Authentication is supported for Greenplum versions 5.x and 6.x.