Below, we list the configurations and permissions necessary to run our available FlexScan. Refer to Configure FlexScan for the detailed steps on configuring your preferred FlexScan.
Let's examine the Qualys and AWS configurations required to enable Zero-Touch API Scans.
Qualys Cloud Platform subscription with full TotalCloud subscription.
Enable Zero-touch API-based Scan to your subscription from Qualys Backoffice. Contact your technical account manager (TAM) for enabling it.
AWS EC2 instances that report the inventory to AWS SSM.
AWS EventBridge configurations.
Let's examine the prerequisites to enable a zero-touch snapshot-based scan.
Qualys Cloud Platform subscription with full TotalCloud Subscription.
The TotalCloud application Connectors provides an automated way to launch the cloud perimeter scans on the publicly exposed cloud assets based on the configuration defined in the Connector.
You must define a global perimeter scan configuration connectors used to run the perimeter scan.
Or, you can enable a cloud perimeter scan while creating a connector and define a custom configuration for scheduling the perimeter scan only for the connector you are creating.
Similarly, you can enable a cloud perimeter scan for the AWS organization connector and define a custom scan configuration for scheduling the perimeter scan. During the cloud perimeter scan, the custom scan configuration is applied to all the member connectors.
If you do not define the custom scan configuration, the global scan configuration is used for launching the perimeter scans.