We have turned on the "Password expires after x month" setting in the Qualys Password Security settings and have noticed that the service account that is used to run the authenticated scans is failing to run authenticated scans that match the x month period.
Can someone confirm that the password settings apply to the Qualys user accounts and the account that is used to run the scans under the Authentication credentials record?
Thank you!
Hi, the "Password expires after X months" setting applies to the password of the Qualys account used to login to the dashboard. This is different from the authentication record used to scan your assets, defined under Scans > Authentication.
In this case, it looks like your Qualys account password and service account used for scanning just happen to expire on the same day, leading you to believe that both are connected. But they're not.
You may read more about Qualys password options here: Set Security Options
Any suggestions then why our scanner fails to perform authenticated scans at least 1s a month with an account that is set to not expire? Yet once we re-enter the password the scanner performs authenticated scan.
Thank you!
Is there a specific pattern to when this happens? Like a specific day in a month?
I'm going to recommend opening a support ticket when this happens. The logs will be required for investigation.
Hi, the "Password expires after X months" setting applies to the password of the Qualys account used to login to the dashboard. This is different from the authentication record used to scan your assets, defined under Scans > Authentication.
In this case, it looks like your Qualys account password and service account used for scanning just happen to expire on the same day, leading you to believe that both are connected. But they're not.
You may read more about Qualys password options here: Set Security Options