I've been in IT for a while, but I'm fairly new to PCI compliance. One of the errors my scan is failing on is: SSL Certificate Signed Using Weak Hashing Algorithm (Known CA) The server seem... Welcome to Dashboards and Reporting Welcome to our Dashboards and Reporting space. Here we will begin to collaboratively and constructively collect relevant legacy ... Hi We had a working query and out of the sudden, it is not working anymore. And I have no idea what is the problem with it. This for the policy compliance posture. Original query: curl -u "Usern... The PCI 4.0 draft appears to only be available to certain groups through PCI SSC. As an ASV would Qualys be able to share a draft so that we could see what might be in the next revision? What is a Feature Request? A Feature Request is any suggestion for an enhancement to Qualys software. Feature Requests are not a contractual obligation for Qualys to develop the suggestion or to develop the request as... Hi I want to know as we have reset our few Environment's "service account" password's in Qualys and replicated this on AWS But our scans are still failing due to these password changes. Is there any ot... Hi A quick question to confirm: I want to know that we have ran scan's based on ALL EC2 instances, when ever we are patching the Environment's whether this is DEV/SIT/TEST etc... However, once all these been ... Hi, I'm consulting with a client who is using Qualys to perform external vulnerability scans. The issue is they have dynamic IP so entering IP for the scans is problematic. Would inst... Hi I wanted to know how can we see an "API" instance call made in the background in a test environment, with instance ID etc...How can we see this on Qualys cloud platform console? Is this a possibility, of se... I got answer False Positive Comment False Positive request rejected. Please see Qualys PCI support case#691243. Kindly resubmit false positive request with additional information how can i see qua... Qualys Cloud Platform Release 8.16 includes New Password Security Options We’ve added several new password security options to enforce a strong password policy when logging into your Qualys subscript... I am trying to get to the window where i can search QIDs. I have a username and pw but it will not let me access the page. QID 38738 What are the steps needed to get a PCI report certified by Qualys? This page contains information to create a PCI Compliance Vulnerability Exposure Dashboard BETA dashboard leveraging data in your Qualys Vulnerability Management subscription. This dashboard is part of the ... Hi, In order to run SSL Labs test for a url what http status code is considered, is it only 200 or any other status codes? We are using the Cloud Agents with FIM enabled in our cloud infrastructure as a replacement for AIDE. Is there any way to create alerts based on a set of criteria? We would want either emails to be sent out or possibl... Hello, How to find the version of Qualys where only PCI Compliance Module is in use? Thanks. This vulnerability (CVE-2004-0230- TCP Sequence Number Approximation Based Denial of Service) is reported on many windows 2008 servers. As per Microsoft, this is a protocol issue and is fixed since 2005 for for IPv4 a... I could see below description for both PCI External IP scan vs Web Application Scans PCI External Network Scans The Network section is where you manage your quarterly external network scans, per PCI ... Hello, I have received this message as a vulnerability from one of my servers. But I'd like to know which cryptographies are the ones he says are discontinued.