Qualys Cloud Platform 10.14 (VM/PC) API Notification 2

Jeff Leggett

A new release of Qualys Cloud Platform 10.14 (VM/PC) includes an updated API which is targeted for release in October 2021. The specific day will differ depending on the platform. See platform release dates on the Qualys Status page. This API notification provides an early preview into the coming API, allowing you to identify use cases that can leverage this updated API.

What’s New

New Scan Parameters to Exclude Users and Groups from Unix Directory Integrity and Directory Search UDCs (Agent Only)
/api/2.0/fo/compliance/control/?action=list
/api/2.0/fo/compliance/policy/?action=export
/api/2.0/fo/compliance/policy/?action=import

We’ve introduced 2 new scan parameters in the Unix Directory Integrity UDC and Unix Directory Search UDC. In previous releases, you were able to provide a list of users and groups to find files owned by those users/groups. Now you can find files owned by users/groups and exclude them. Simply choose the new “Exclude the user(s)” and “Exclude group(s)” options under Scan Parameters > File Owner in the UDC. Note that the exclude options are only supported by Cloud Agent. The scan data for the control evaluation is collected by the agent and then filtered by the agent.

New UDC “Unix File Content Check (Agent Only)” with Wildcard Support
/api/2.0/fo/compliance/control/?action=list
/api/2.0/fo/compliance/policy/?action=export
/api/2.0/fo/compliance/policy/?action=import

We’ve introduced a new User Defined Control (UDC) called “Unix File Content Check (Agent Only)” which supports wildcard file search and provides several additional scan parameter options than the original version of the Unix File Content Check UDC. This new UDC can only be evaluated by the Linux Cloud Agent. Please note that there are no changes to the existing Unix File Content Check UDC.

New Authentication Support for Nginx
/api/2.0/fo/auth/nginx/
Nginx authentication is now supported for compliance scans. The new Nginx Authentication API (api/2.0/fo/auth/nginx/) lets you list, create, update, and delete Nginx authentication records. User permissions for this API are the same as other authentication record APIs.

Posture Info API – Tag Format in CDATA
/api/2.0/fo/compliance/posture/info/
With this release, for the Posture Info API the tag value format has changed from plain XML to CDATA.

Subscription API – Changes to Export/Import User Preferences for Scanner User Account
/api/2.0/fo/user_prefs/?action=export
/api/2.0/fo/user_prefs/?action=import

Now when using the Subscription API to export user preferences for a user account with a Scanner user role, you’ll see the following INFO keys in the XML output. Also, you can include these INFO keys when importing user preferences for a Scanner user account.

Updates to Control List Output DTD
We added new optional elements to the Control List Output DTD for future use.

For the full release notes see https://www.qualys.com/docs/release-notes/qualys-cloud-platform-10.14-api-release-notes.pdf

Share your Comments

Comments

Your email address will not be published. Required fields are marked *