We have turned on the "Password expires after x month" setting in the Qualys Password Security settings and have noticed that the service account that is used to run the authenticated scans is failing to run authenticated scans that match the x month period.
Can someone confirm that the password settings apply to the Qualys user accounts and the account that is used to run the scans under the Authentication credentials record?
Thank you!
Hi, the "Password expires after X months" setting applies to the password of the Qualys account used to login to the dashboard. This is different from the authentication record used to scan your assets, defined under Scans > Authentication.
In this case, it looks like your Qualys account password and service account used for scanning just happen to expire on the same day, leading you to believe that both are connected. But they're not.
You may read more about Qualys password options here: Set Security Options