Is it possible to run Qualys Scan against our AWS RDS Oracle databases?
Are there any limitations?
Can Qualys work directly with CyberArk, a password store to retrieve passwords for database authentication
Stuart, Not sure about the Oracle part. I would assume you have permission from AWS to scan and depends on what your after. Scanning the system Oracle is hosted on or login to Oracle.
Either way Qualys on the OS Vulnerability side does support CyberArk integration and we use it extensively in our environment.
Good to know about CyberArk for sure!
Hopefully others might respond about Oracle RDS.
RDS is a slightly restricted offering of the AWS EC2 database, in that Host access is not permitted and certain roles and actions would not be possible as a result.
I know AWS has Qualys approved scanners so I would assume that if you wanted to create an Oracle Authentication Record where the credentials are stored in CyberArk you could. Then you could do a scan against Oracle where Qualys does a login to Oracle. I would certainly separate out the CyberArk and Oracle login to start just to simplify things though.
Yes, we support scanning RDS instances. It has a few extra steps though.
The attached document will help you.
Thank you so much the reply.
That document will help us for sure :-)
Retrieving data ...