Get Started with Azure Sentinel

Azure Sentinel provides intelligent security analytics at the cloud scale for the entire enterprise. It makes it easy to collect security data across the entire hybrid organization, from devices to users to apps to servers on any cloud.

You can now access Qualys Cloud Detection and Response findings in Azure Sentinel.

Azure Sentinel provides a comprehensive view of the high-priority security alerts and compliance status across their accounts. By integrating the findings from Qualys CDR with Azure Sentinel, you can get near real-time, up-to-date visibility of your threat posture and suspicious network activity in the Azure Sentinel console. These findings, gained by correlating Qualys information with other data in Azure Sentinel, allow you to take rapid, remedial actions.

Prerequisites

The following prerequisites must be met for integrating Qualys CDR with Azure Sentinel:

• Ensure that you accept all the Qualys Terms and Conditions and contact the Qualys Support team for the integration process.

  You can access integration API only after accepting Terms and Conditions provided by Qualys.

• Qualys Applications: Cloud Detection and Response (CDR).
• Qualys Sensors: Virtual Scanner Appliances or Cloud Agents, as required
• Ensure API Access permission is enabled for the user account.
• Manager or Unit Manager role.

Get Started

Quick Steps: Integrating CDR with Qualys

The following is the user flow for integrating Qualys with CDR

1. Create Workspace.
2. Onboard CDR.
   1. Create Product.
   2. Create Integration.

Additional Resources

You might already be familiar with Qualys Cloud Suite, its features, and user interface. If you are new to Qualys, we recommend below given overview tutorials.

From the Community

Qualys Training | Free self paced classes, video series, online classes

Qualys Documentation | Getting started guides, quick references, API docs