AnsweredAssumed Answered

Qualys Scan + Sharepoint log

Question asked by darenas on May 1, 2012

I am trying to find the best course of action to resolve event log warning caused by Qualys scans.  I currently have a sharepoint server with the below log.  I have tried searching the forums and was only able to find one post stating to telnet to the host and verify if the GET command worked from port 6515.  The telnet connection does not open, as expected. 


Can one of the Qualys techs please let me know what may be causing this log entry to appear in detail?  Also, what is required to elevate the log entry.  I do not want to stop Qualys from scanning the machine however I would prefer for no log entries each time the server is scanned.


Any help would be appreicated.


Log Name: Application

Source: Microsoft-SharePoint Products-SharePoint Foundation

Date: 5/1/2012 8:53:03 AM

Event ID: 8059

Task Category: Configuration

Level: Warning





Alternate access mappings have not been configured. Users or services are accessing the site http://XXXXXXXX with the URL http://qualys.null. This may cause incorrect links to be stored or returned to users. If this is expected, add the URL http://qualys.null as an AAM response URL. For more information, see:"/>

Event Xml:

<Event xmlns="">


<Provider Name="Microsoft-SharePoint Products-SharePoint Foundation" Guid="{6FB7E0CD-52E7-47DD-997A-241563931FC2}" />







<TimeCreated SystemTime="2012-05-01T13:53:03.387627400Z" />


<Correlation />

<Execution ProcessID="3992" ThreadID="4192" />






<Data Name="string0">http://XXXXXXXXX</Data>

<Data Name="string1">http://qualys.null</Data>

<Data Name="string2">http://qualys.null</Data>