Asset reports provide the much-needed overview of your asset system and ensure efficient monitoring of assets that are within your monitoring scope. Gaining visibility into your assets at a granular level is crucial, especially for PCI compliance because as per PCI-DSS guidelines, all assets in scope must have FIM actively running on them.
Qualys FIM helps you with the required asset information in real time, which helps you to be audit-ready. You can also choose to create reports specifically on those assets that are non-compliant as per PCI-DSS requirements 11.5 v3.2.1 and 11.5.2 v4.0.
1. In the FIM UI, navigate to the Reports > Report Rules tab and click Create Report Rule.
2. In the Report Rule Details page, provide the report rule name, a brief description, and then click Next.
3. In the Source page, select Assets as the source for your reports that you want to include in the rule.
4. In the Query text box, do one of the following and then click Next:
- Filter assets based on a custom query: Enter a query using supported QQLs to report on the assets as per your requirement.
Refer to Searching FIM Asset Tokens
- Filter only the non-compliant assets: Select the List of non compliant assets as per PCI DSS Requirement 11.5 v3.2.1 and 11.5.2 v4.0 check box if you want to report on assets that are not compliant as per the specified PCI-DSS requirements.
5. In the Report Output and Notification page, perform the following steps and then click Next:
Specify report format: In the Output Format section, choose the format for your report.
Compress your report: Click Yes if you want the report to be compressed. Otherwise, click No.
Notify stakeholders: To send notifications when a report is generated, select Notification and enter the email IDs of the users you want to notify in the To text box. You can enter a maximum of 50 recipients. Optionally, in the Message Body text box, enter the email message to be sent along with the report.
The notification email includes the link to download the report from the Qualys platform. You must provide your Qualys platform user ID and password to download the report. The report link is valid only for seven days. You must download the report before the link expires..
6. In the Report Schedule page, you have the following two options for report generation:
6. Click Run Now to run the report as soon as you confirm the report rule creation.
If you want to schedule the report generation, you can have a one-time schedule or a recurring schedule.
For a one-time schedule, perform the following steps and then click Next:
- Specify and date and time for the report generation in the Start Date and Start Time fields respectively.
- In the Consider events from drop-down list, specify the duration to consider for the events to be included in the report. By default, the value selected is Today.
By default, the Start Date field displays the current date and the Start Time field displays the current time +20 minutes. You can manually change the date and time if required.
For a recurring schedule, perform the following steps and then click Next:
- Select the Recurring Job check box.
- Specify a frequency for the report execution schedule: From the Repeats drop-down list, select how frequently you want the report to be executed. The default value selected is Daily.
- Enter the relevant inputs for options and fields that are displayed depending on the value you select from the Repeats drop-down list.
- Specify a start time for the recurrent schedule: From the Start Time drop-down list.
The default value is the current time+20 minutes. You can manually change the time if required.
- Specify an end date for the recurrent schedule: Select the End Date check box and then from the drop-down list, select the last date for the recurring schedule of the report. The default value is the 10th day from the current date.
7. In the Review & Confirm page, review your input parameters.
You can click to make changes in the respective pages if required.
8. Click Create Report Rule.
After the report rule is created, it is listed in the Report Rules tab.