what are best adminisration for Qualys, are there any rules one should follow.
Its a bit hard to explain in a vacuum of information.
Obviously depends on the usage of Cloud Agents or not as well.
Assuming Cloud Agents is not used and its classic VM.
Here are my top issues that I have discovered myself:
1 - Asset Management
Like anything, knowing EXACTLY the assets you have in the system. Understanding your methodology of getting assets into the system as well. Are you scanning ranges of IPs and including things? including individual IPs, etc?
Do you have assets with multiple IP addresses and run the change of scanning them both (turning on Agentless Tracking will help resolve the duplication).
2 - Logical Growth and Reporting
Where do you see going? Getting new systems or services from Qualys? How do you proceed to move that direction? Also, how can you use VM in Qualys to benefit your org. How can you organize your data to better answer questions (from management) as well improve the performance of operations.
3 - Dashboard
I have found dashboards invaluable. I simply started loading all the dashboards from the reputable resouerces here to see what they offered. From there, I started using those to understand how to implement my own for different reasons. Dashboards for remediation efforts, for patching activities, etc... Let alone some Dashboards that you can use for KPIs and management reporting.
4 - Tagging and Asset Groups
Tagging has been amazing, creating a tag that shows groups of assets that meet certain requirements. Asset Groups are somewhat related to tagging as well. Using the tags to locate info, schedule scans, produce reports, etc...
Coming up with a hierarchy of tagging is something that is important.
I know alot of this is generalities, but its meant to be general as noone here is you and can answer the details needed in the first topics to then generate all the needed dashboard, reports, tags, etc...
Just quick 2 cents.
There is a huge amount of information here. I for one have utilized the amazing amount of info here to help me evolve my understanding of the platform as well as tips and tricks on handling things...
I am happy to help out when I can as others have helped me with issues along the way
Thanks for the reply.
can you give me any administartion tips. or best practice.
Best way to administrate Qualys
What are you looking for as far as best practices? Scanning? Assignment of work? Vulnerability resolution? I agree with John S above, there is a lot in that statement.
Let me know what area you want to start in and I will do my best to assist in what I know.
A good place to start is the training materials at https://www.qualys.com/training/. You'll find a wide range of topics on how to use your Qualys subscription.
That is where I started...learning the tool, before I started using it.
Retrieving data ...