Connector Centralization 3.0.0
October 10, 2025
This release of CONCEN 3.0.0 brings updates to existing connectors.
Connector Enhancements
The enhancements introduced to existing connectors in this release.
Simplified Connector Configuration Experience
The connector configuration UI has been significantly enhanced to improve usability and reduce setup complexity. The previous 7‑step configuration workflow has been streamlined to 3–4 intuitive steps, enabling faster onboarding and reduced configuration effort for users.
Palo Alto Networks Prisma Cloud Connector
Prisma Cloud provides visibility into cloud environments by identifying misconfigurations, vulnerabilities, and security risks across infrastructure, workloads, and cloud-native services.
This connector enables ingestion of asset types such as compute, storage, containers, and container images, along with their misconfigurations, into the Qualys Enterprise TruRisk™ Platform (ETM) for correlation and processing.
Prisma Cloud Online Help
Wiz (Cloud Security) Connector
The Wiz CNAPP Connector addresses the challenge of fragmented cloud security data by centralizing asset and vulnerability findings from Wiz into Qualys Enterprise TruRisk Management.
By automatically synchronizing vulnerability findings through a unidirectional API integration, the connector reduces operational overhead and improves risk assessment accuracy. Security teams gain a unified view across storage, compute, container instances, and container images, enabling faster and more informed remediation decisions from a single platform.
Wiz (Cloud Security) Online Help
Veracode DAST Connector
The Veracode DAST connector integrates dynamic application security testing findings from Veracode into the Qualys Enterprise TruRisk™ Platform (ETM).
This integration eliminates manual data transfers and allows security teams to consolidate application vulnerabilities with other enterprise risk data. By normalizing findings using TruRisk-based scoring, practitioners can quickly identify and prioritize application flaws that pose the greatest risk.
Veracode DAST Online Help
Veracode SCA Connector
The Veracode SCA connector bridges Veracode’s software composition analysis platform with Qualys Enterprise TruRisk Management, enabling centralized visibility into open source and third-party dependency risks.
The connector performs comprehensive ingestion of vulnerable assets and findings from code repositories, providing a unified view of supply chain risks and enabling more efficient threat prioritization and remediation planning across development and security teams.
Veracode SCA Online Help
Veracode Static Analysis (SAST) Connector
The Veracode SAST Connector integrates static application security testing findings into Qualys Enterprise TruRisk Management, addressing fragmented visibility across code analysis and risk platforms.
By consolidating code repository assets and their vulnerabilities into a unified inventory, the connector eliminates manual aggregation and enables continuous monitoring with faster remediation workflows—without requiring delta support or managing multiple disconnected tools.
Veracode Static Analysis (SAST) Online Help
Checkmarx One DAST V2 Connector
The Checkmarx One DAST connector automatically imports dynamic application testing findings into Qualys Enterprise TruRisk Management.
This integration provides centralized visibility into web application vulnerabilities identified through simulated real-world attack scenarios, enabling organizations to prioritize remediation efforts and understand the impact of application vulnerabilities on their overall security posture.
Checkmarx One DAST V2 Online Help
Black Duck SCA Connector
Black Duck SCA identifies security and license risks associated with open-source components in applications.
This connector enables ingestion of code repositories, packages, and vulnerability findings into the Qualys Enterprise TruRisk™ Platform (ETM), allowing for enhanced correlation and processing within the broader enterprise risk context.
Black Duck SCA Online Help
Microsoft Active Directory (AD) Connector
Microsoft Active Directory manages authentication and authorization for on‑premises identities and resources.
This connector enables ingestion of users, groups, and role-related findings into Qualys Enterprise TruRisk™ Platform (ETM) for correlation and risk analysis.
Microsoft Active Directory (AD) Online Help
Microsoft Entra ID Connector
Microsoft Entra ID provides cloud-based identity and access management for users, applications, and services.
This connector ingests users, groups, and role-related security findings into Qualys Enterprise TruRisk™ Platform (ETM), enabling centralized identity risk visibility across cloud environments.
Microsoft Entra ID Online Help
Qualys DataFlow for Container Security Connector
Qualys DataFlow for Container Security provides visibility into container workloads and images to identify vulnerabilities and configuration risks.
This connector enables ingestion of container workloads, container images, and associated vulnerability findings into Qualys Enterprise TruRisk™ Platform (ETM) for advanced correlation and processing.
Qualys DataFlow for Container Security Online Help
Multiple Execution Support for a Single Connection
The connectors now support multiple executions for the same connection, enabling ingestion of data from multiple asset classes and their findings into Qualys Enterprise TruRisk™ Platform (ETM) using a single connection.
Connector Log Download Capability
Users can now download connector logs directly from the Connections List page. Logs are available in CSV format and can be downloaded for various time zones, improving troubleshooting and audit workflows.
Enhanced Connector Logs and Filtering
Connector logs have been enhanced to provide better visibility and categorization. Users can now filter logs using quick filters such as:
- Processing status
- Connection name
- Action type
These improvements make it easier to analyze connector behavior and identify issues efficiently.