This new release of the Qualys Cloud Platform (VM, PC), version 8.20, includes several new features in Qualys Cloud Platform and additional support for multiple technologies in Qualys Policy Compliance.
Qualys Cloud Platform
Configure Password Expiration Notification – Now users can be notified by email when their password is set to expire. A user with a “Manager” role can enable this option by selecting the option “Notify users by email to change password N days before expiration” in the Users > Setup > Security page.
Note: If there is an overlap between two notification periods, the system will only send one email.
This allows Managers to set shorter timeouts for more restricted users. For example, a Manager can set a timeout of 15 minutes for most users and then define a longer session timeout for the users who need to be logged in for longer periods of time because of long running tasks.
Users can enable this option by going to Users > Setup > Security. Select the option “Customize session timeout by user role” and then choose between 10-240 minutes for each role. The default setting for each role is 60 minutes.
Character limit Increased for DNS and NetBIOS Hostnames fields – The maximum character limit for adding and removing DNS Hostnames and NetBIOS Hostnames fields in Asset Group has been increased to 20,000 characters.
In the DNS > Hostnames page, the Remaining Characters label shows you how many more characters you can enter in the Add DNS Hostname or Remove DNS Hostname fields.
To add DNS and NetBIOS hostnames to the asset group, Go to Assets > Asset Groups. Select New > Asset Group. Navigate to the DNS or NetBIOS tab.
Note: This feature is applicable only to subscriptions with the Scan by Hostname feature enabled.
Qualys Policy Compliance (PC/SCA)
Support for Docker CE/EE – Qualys has extended its support for Docker authentication to include Docker CE/EE for Unix. Users need a Docker authentication record to authenticate to a Docker daemon running on a Linux host, and scan it for compliance. Users also need a Unix record for the host running the docker.
The following docker versions are supported:
- Docker daemon versions 1.9 to 1.13
- Docker Community Edition (CE) version 17.x or later
- Docker Enterprise Edition (EE) version 17.x or later
Support for MongoDB 4.x – Qualys has extended its support for MongoDB database authentication to include MongoDB 4.x for Unix. Users need a MongoDB authentication record to authenticate to MongoDB database instance and scan it for compliance. Users also need a Unix record for the host running the database.
Support for Database User-Defined Controls – Users can now use database user defined controls to create custom checks by executing SQL statements on databases. These controls can then be used to generate policy reports on databases. Currently Qualys supports MS SQL and Oracle databases.