Introduction: Certificate View
Qualys VMDR solution offers Certificate View, which provides discovery, assessment, and management of all your SSL/TLS certificates across all enterprise and cloud-based assets.
With Qualys Certificate View, you can create a catalog of certificates to detect changes in the inventory and track the progress of your security measures. It also evaluates the SSL/TLS configurations of your servers, which are often overlooked, and assigns grades to each certificate instance.
Qualys Certificate View, helps organizations manage their digital certificates both internally and externally. It identifies and monitors certificates throughout the enterprise, ensuring that they are renewed before they expire to prevent any outages. This is important because certificates play a critical role in securing an organization's most sensitive data, and their expiration or malfunction can result in serious consequences. Certificate View works across both on-premises and cloud instances, improving availability and preventing any downtime.
Subscription for Qualys Products
There are various subscription types available for the Qualys products, such as:
-
Certificate View: With a free subscription, you can add external sites.
-
VMDR: With VMDR subscription, you have access to Certificate View. Simply choose Certificate View from the application selector to start using it. You can add the same number of internal certificates as there are scannable assets in your VMDR subscription.
-
VM: To access Certificate View in your subscription, contact Qualys support for assistance.
To add and monitor internal sites, upgrade to a Certificate View Full subscription.
Prerequisites
-
Open Port: 443
-
Protocol: UDP, TCP, Null
Benefits of Qualys Certificate View
- Identify certificate authorities
Certificate View, enables you to add Certificate Authorities to categorize better and identify if the certificates are issued by approved or unapproved Certificate Authorities (CAs).
- Get curated out-of-the-box dashboard
Qualys Certificate View integrates with the Unified Dashboard (UD) to bring information from all Qualys applications into a single place for visualization. Each dashboard displays a brief description of the information it presents. It is also simple to modify widgets to extract information from other Qualys applications and add them to your dashboard.
- Customize rule-based alert
You can set up rules to receive notifications and stay informed about certificate or TLS related vulnerabilities and for quick remediation. You can create alerts for certificates expiring in 30/60/90 days, self-signed certificates, and certificates from unapproved CAs, among others.
- Generate On-Demand reports
Qualys Certificate View allows you to generate reports on-demand or schedule them to provide insights into the security posture of the certificates and assets in your network. These reports can help you identify any security issues that require immediate attention or remedial actions.
- Upgrade immediately to add internal certificates
Include your internal network in the inventory and evaluation of your Internet-facing certificates to protect your important data.
- Configure user permissions
If you use DigiCert as your Certificate Authority, Qualys Certificate View allows you to create, approve, or reject certificate enrollment and renewal requests based on assigned responsibilities and permissions.
Additional Resources
You can check out the video on introduction to digital certificates here.
To know more about Qualys Certificate View, watch out this video.