Tim White

Qualys Cloud Suite 8.4 API Release Notification 2

Blog Post created by Tim White Employee on Mar 25, 2015

A new release of Qualys Cloud Suite, Version 8.4, includes an API update which is targeted for release in April 2015.

 

This API notification provides an early preview into the coming new API features and enhancements in Qualys Cloud Suite 8.4, allowing you to proactively identify new opportunities to automate your Qualys service or to integrate with other applications.

 

This 15-day notification describes new API features that do not impact existing API implementations. API changes in the 8.4 release that may impact existing API implementations were already announced in the 30-day notification: Qualys Cloud Suite 8.4 API Release Notification.

 

Qualys API Enhancements

  • New Scheduled Scan API v2
  • New MySQL Authentication API
  • Appliance List v2 – Secondary Proxy Removed
  • PC – Compliance Scorecard Report XML Updates
  • PC – Import/Export Windows Directory Search UDC
  • CVSS Vectors added to CSV reports
  • Associated Tags added to CSV reports

 

Full release notes will be available to customers on the day of the release.

 

New Scheduled Scan API v2

Our new Scheduled Scan API v2 (/api/2.0/schedule/scan/) supports defining schedules for vulnerability scans. This API delivers improvements to the API v1 (/msp/scheduled_scans.php) and supports scanning targets in multiple network zones.

 

New MySQL Authentication API

The new MySQL Authentication API (/api/2.0/fo/auth/mysql/) lets you to list, create, update and delete MySQL authentication records.

 

Appliance List v2 – Secondary Proxy Removed

We’ve removed the secondary proxy configuration returned by the Scanner Appliance List v2 API (/api/2.0/fo/appliance/?action=list) when the request includes full output (output_mode=full). The appliance list output DTD was updated (/api/2.0/fo/appliance/appliance_list_output.dtd).

 

PC – Compliance Scorecard Report XML Updates

The Compliance Scorecard Report XML includes new elements for control criticality when selected in the report template. The DTD (compliance_scorecard_report.dtd) has several updates.

 

PC – Import/Export Windows Directory Search UDC

You can now import/export Windows directory search user defined controls in XML format. The schema ImportableControl.xsd has been updated.

 

CVSS Vectors added to CSV reports

Vulnerability scan reports in CSV format will now show the CVSS vector for each CVSS Base and Temporal score. The vector is a string of abbreviated metrics and values that describe the components used to calculate the score.

 

Associated Tags added to CSV reports

Vulnerability scan reports in CSV format will show asset tags associated with each host listed in the report. Applicable when your report target includes asset tags and your report template is configured for host based findings (automatic data).

Outcomes