A new release of Qualys Cloud Platform 10.4 (VM/PC) includes an updated API which is targeted for release in October 2020. The specific day will differ depending on the platform. See platform release dates on the Qualys Status page. This API notification provides an early preview into the coming API, allowing you to identify use cases that can leverage this updated API.
New API to Ignore Vulnerabilities
With this release, we’re introducing a new V2 API for Ignoring Vulnerabilities which will replace the old V1 API for Ignoring Vulnerabilities.
LDAP Authentication Support for MongoDB Record
With this release, you can list, create and update MongoDB records for LDAP authentication. We have introduced two new parameters – crendential_type (to provide separate options for local authentication and external LDAP authentication) and cleartext (enables to send cleartext password over unencrypted channel). Local authentication was already supported.
Launch/Schedule Compliance Scans on FQDNs
With this release you can launch and schedule compliance scans on Fully Qualified Domain Names (FQDNs). Specify the input parameter “fqdn” during the scan request.
Host List and Host List Detection API Outputs to Show Asset ID and Cloud Provider Tags
We added a new “ASSET ID” tag to the Host List and Host List Detection API outputs to show you the asset IDs of the scanned hosts. A new parameter “show_asset_id” is added to the Host List and Host List Detection APIs
For more details on understanding Entity IDs in Qualys please see this page
We also added a new tag “Cloud Provider Tags” to the Host List and Host List Detection API outputs to show you the cloud tags and their values for the assets. For a host, the “Cloud Provider Tags” tag will show the cloud tag’s name, value, last success date for each cloud tag.
API Support for Kubernetes Authentication Record
We have added API support for creating an authentication record for Kubernetes 1.x application installed on a UNIX host. Now you can create, update, list, and delete data related to Kubernetes 1.x authentication records. User permissions for this API are the same as other authentication record APIs.