AnsweredAssumed Answered

Qualys Vulnerability Management QID 38170 Internal Scan certificate and IP don't match

Question asked by Sergio Cardone on Oct 22, 2015

Have some servers setup in a hosted environment.   The servers use external DNS servers (no internal dns servers).    When the scanner executes, it does a lookup on the FQDN on the certificate which maps to an external IP being hosted by the web server.  The scanner will present the SSL Certificate - Subject Common Name Does Not Match Server FQDN because there is no mapping from the internal IP to the name issued on the certificate (since the name on the cert is already mapped to the WAN ip address and there is no internal DNS).   Adding an a virtual host to the scanner doesn't work and we looking to get a clean scan.  How can we get this resolved as there is no way to do any kind of manual mapping for the scanner.

Outcomes