According to https://community.qualys.com/message/20845#20845 remediation tickets cannot be created for information gathered findings.
Is it possible to create a new QID for Windows, Unix, ESX, and SNMP authentication failures and authentication not attempted? We are actually asking our infrastructure partners to remediate these issues as for us they create significant gaps in our vulnerability detection capabilities.
Is there an OVAL example out there for authentication? I see file and registry checks, but I'm not sure how we would do authentication failures.