Far han

Feature Request: Allow API-based access to the Qualys PCI app

Discussion created by Far han on Sep 29, 2015

External PCI scans should be a set and forget service unless there are findings that are non-compliant. Right now we have to check whether any of our internet-facing IPs have changed, enumerate all the new ones and then find their "expired" counterparts that were used for the last scan and then swap them in the PCI console, which makes for a user experience very reminiscent of the early 2000s.

 

We use AWS and ELB IPs can change frequently. We would like to automate the enumeration and update of the PCI scanning job but there is not option to access the PCI app via an API.

Outcomes