In the Vulnerability Filters section of the Edit Scan Report Template, what does the "Ignored" checkbox do when it is selected?
If, in your subscription, your organization has chosen to close/ignore detections suppresses those detections from appearing in report output by default. Activating the Ignored check box overrides that defaut and adds those items into the report output/
Follow up question: I don't believe we've ever deliberately ignored any QIDs. Is there an automated way that QIDs could be set to ignore? We have been running large report exports and a significant difference in reporting when ignored is selected vs when it is now. If they've been ignored, I'm not sure how or who ignored them. No one with access to our console has set out to ignore any QIDs.
Yes, James, this can be accomplished in several ways.
Are you aware Qualys offers free, self-pace training, with/out certification of many of our products? Please visit Training and Certification | Qualys, Inc. for more detailed information.
You may find Remediation on Vimeo very beneficial, but taken out of context from the Video Library: Vulnerability Management | Qualys, Inc. series, it may be a bit confusing.
Additionally, you can also reach out to your technical account manager to review any use cases specific to your subscription.
Here is a video specific to ignoring and disabling vulnerabilities. It's kind of long, but covers a lot of these use cases. At 16:22, you'll find how to see what's been ignored/disabled.
As Debra mentioned the basic Vulnerability Management course can be useful for some context.
Thank you! I'm running a filtered report now to see what has been filtered. I'll review the rest of the video later to learn more about why or how those items were marked without one of our team doing it.
Retrieving data ...