A new release of Qualys Cloud Suite, Version 8.10.1 (this version # applies to Qualys Vulnerability Management (VM) and Policy Compliance (PC) modules), includes an updated API which is targeted for release in July 2017. The specific day will differ depending on the platform. See platform release dates on the Qualys Status page. This API notification provides an early preview into the coming API as well as updated API's that may have changes affecting current code environments, allowing you to identify use cases that can leverage this updated API. The release notes are attached at the end of this notice.
New Scanner Role Extended Permissions
Your subscription may now be configured to allow users with a Scanner user role to be granted these extended permissions:
- Manage virtual scanner appliances. When granted, this allows the user to create, edit and delete virtual scanner appliances from the UI and API.
- Create/edit authentication records/vaults. When granted, this allows the user to create and edit authentication records and vaults from the UI and API.
New Input Parameter for Create Virtual Scanner
When users with the Unit Manager or Scanner role create a virtual scanner appliance, they must add the virtual scanner to an asset group in their account. Simply provide the asset group ID as part of the API request.
VM - Detection API - New Value for Active Kernels Only input parameter
The existing parameter “active_kernels_only” helps you identify detections related to running and non-running Linux kernels. You can now specify active_kernels_only=3 in your request to only include vulnerabilities found on running Linux kernels.
PC - Enhancement to File Integrity Checks
With this release you’re no longer required to manually set the default expected value when defining File Integrity checks. Now you can pick the “Use scan data as expected value” option in the UDC and we’ll set the expected value for you based on the actual value returned by the scan. Note that you’ll also need to select the “Auto Update expected value” option in your compliance profile.