Get Started with AWS Connectors

Configure AWS connectors to scan instances for security issues using the Qualys Cloud Platform. Our connector wizard walks you through the steps to set up ARN authentication, region selection and activate asset scanning. 

How does the AWS connector work?

Qualys connects to your AWS account through a simple two-step process. First, it creates a session using a role in the Qualys AWS Base Account. Then, it performs an assumerole operation with the role you set up in your member account to gain required access.

The AWS connectors with cross-account roles use Qualys AWS Base accounts. If you do not wish to use a Qualys account, you can use the base account instead to set up the AWS connectors. Learn more.

Now, for an Organization connector, Qualys Connector follows the same process but uses the organization role to discover all accounts and organization units in your AWS environment. It compares this current account list with previous records, automatically creating connectors for new accounts and disabling them for removed ones. This ensures your AWS organization stays properly connected without requiring any manual intervention.

Refer to the flow below to understand how the member and organization connector operates.

 

Get Started

Resources

Onboard Your AWS Account

Onboard AWS Account with Qualys

Onboard AWS Organization with Qualys

Configure FlexScan 

View and Manage Assets

 

Manage Dashboard

View Insights

View your TotalCloud Inventory

View your Asset Inventory

Manage Your Connectors

 

Update Your AWS Connector

Delete Your AWS Connector

Attach AWS Member Connectors

Detach AWS Member Connectors

Create Custom Tags for Organization Connectors

Additional Resources

Connector API Guide

Tagging discovered assets

Related Links

Edit Connector Details

Disable Connectors

Delete AWS Connector

View Assets and Resources

Synchronize Instance Data

Run Perimeter Scan