Import CVEs from Qualys Integration

Integrate your Qualys Vulnerability Management cloud software account so you can import CVEs to Threat Command.

Before you begin, ensure that you have the Qualys username and password.

Import CVEs from Qualys to Threat Command

Import CVEs so you can manage them in Threat Command. CVEs from 30 days back are imported.

To import CVEs:

  1. From Threat Command, select Automation > Integrations.
  2. From the Integrations  window, click Cloud. temporary placeholder
  3. Click Add new device.
  4. Type a user-defined name for the device. 
    The name can contain a maximum of 50 letters, spaces, numbers, and underscores.
  5. For the Device type, select Qualys.
  6. Type the username and password for the Qualys account.
  7. (Optional) If you are using an IP address allowlist, add both of these addresses to enable the integration connection: 34.136.221.156, 34.132.110.177
  8. It is recommended to click Test Credentials to ensure that the credentials are valid. 
    If the credentials are not valid, a message is displayed.
  9. Click Add

The new device is added to the cloud integrations device list. Next to the device name, there is a red dot, indicating that communication has not yet been established. The dot will change to green when the device is synchronized.

Integration credentials are checked periodically. An email message will be sent to the Threat Command administrator if credentials have expired.

Edit Qualys integration

You can edit the Qualys connection credentials. To edit a connection:

  1. From Threat Command, select Automation > Integrations.
  2. From the Integrations  window, click Cloud.
  3. Select the integration to update. 
    The integration details are displayed.
  4. Make necessary corrections, then click Test Credentials
    If the credentials are not valid, a message is displayed. 
  5. Click Save.