Hello,
We currently use Qualys VM to scan our AWS assets, only the assets with public IP. We maintain an asset inventory that we api into qualys on a regular basis to scan. Considering the elasticity and volatility of the cloud infra, we run into issues where assets change, destroyed, etc. I wanted to check is there an option with Qualys where you can feed the list of AWS accounts and have Qualys scan these accounts for all the assets under them. Maybe my assuming a role, etc.
Does this option exists currently or plans to have this done ?
This can be done easily by creating an EC2 connector. The connector automatically fetches all EC2 instances from selected regions in your AWS account.
Here's a video showing how to create one: Securing AWS EC2 with Qualys - EC2 Connector and AWS EC2 Video Series on Vimeo
If you have multiple AWS accounts, you'll need one connector per account.
To use this feature, EC2 scanning must be enabled on your account. Your TAM can help you with this.
- Shyam