Home

Creating Reports on FIM Assets

Asset reports provide the much-needed overview of your asset system and ensure efficient monitoring of assets that are within your monitoring scope. Gaining visibility into your assets at a granular level is crucial, especially for PCI compliance because as per PCI-DSS guidelines, all assets in scope must have FIM actively running on them.

Qualys FIM helps you with the required asset information in real time, which helps you to be audit-ready. You can also choose to create reports specifically on those assets that are non-compliant as per PCI-DSS requirements 11.5 v3.2.1 and 11.5.2 v4.0.

To create reports on FIM assets:

1. In the FIM UI, navigate to the Reports > Report Rules tab and click Create Report Rule.

2. In the Report Rule Details page, provide the report rule name, a brief description, and then click Next.

Image of the Create Report Rule for Asset Source

3. In the Source page, select Assets as the source for your reports that you want to include in the rule.

4. In the Query text box, do one of the following and then click Next:

- Filter assets based on a custom query: Enter a query using supported QQLs to report on the assets as per your requirement.

Refer to Searching FIM Asset Tokens

- Filter only the non-compliant assets: Select the List of non compliant assets as per PCI DSS Requirement 11.5 v3.2.1 and 11.5.2 v4.0 check box if you want to report on assets that are not compliant as per the specified PCI-DSS requirements.

Image of the Create Rule Source page

5. In the Report Output and Notification page, perform the following steps and then click Next:

The notification email includes the link to download the report from the Qualys platform. You must provide your Qualys platform user ID and password to download the report. The report link is valid only for seven days. You must download the report before the link expires..

6. In the Report Schedule page, you have the following two options for report generation:

6. Click Run Now to run the report as soon as you confirm the report rule creation.

If you want to schedule the report generation, you can have a one-time schedule or a recurring schedule.

Steps to follow if you want to schedule the report execution:

For a one-time schedule, perform the following steps and then click Next:

- Specify and date and time for the report generation in the Start Date and Start Time fields respectively.

- In the Consider events from drop-down list, specify the duration to consider for the events to be included in the report. By default, the value selected is Today.

By default, the Start Date field displays the current date and the Start Time field displays the current time +20 minutes. You can manually change the date and time if required.

Image of the Report Schedule page

For a recurring schedule, perform the following steps and then click Next:

- Select the Recurring Job check box.

- Specify a frequency for the report execution schedule: From the Repeats drop-down list, select how frequently you want the report to be executed. The default value selected is Daily.

- Enter the relevant inputs for options and fields that are displayed depending on the value you select from the Repeats drop-down list.

- Specify a start time for the recurrent schedule: From the Start Time drop-down list.

The default value is the current time+20 minutes. You can manually change the time if required.

- Specify an end date for the recurrent schedule: Select the End Date check box and then from the drop-down list, select the last date for the recurring schedule of the report. The default value is the 10th day from the current date.

7. In the Review & Confirm page, review your input parameters.

You can click Edit icon to make changes in the respective pages if required.

Image of

8. Click Create Report Rule.

After the report rule is created, it is listed in the Report Rules tab.

Report Rule sub-tab under Report tab

Related Topics

FIM Reports

Creating Reports on FIM Events