Connector Workflow
The Connector work with the following sequence:
Asset Discovery: The connector performs asset discovery for your cloud with its continuous synchronization mechanism. The connector synchronizes every 4 hours with the AWS account and pulls in all instances (including terminated instances).
AWS retains the terminated instances for approximately one hour. However, Qualys stores records of all the terminated instances, and you can always track the history and details of all such terminated instances.
Synchronization of Assets: Adds the assets to your Qualys account. Except for assets with errors (as such assets are dropped off), all other assets are added to the Qualys account.
Activation: When executing a scan using scanner appliances, you must activate Vulnerability Management or Policy Compliance or Security Configuration Assessment licenses for the assets you added to your Qualys account. You can manually activate the assets or enable automatic activation during the connector setup.
Excluded from Activation: Apart from the terminated instances that are excluded from activation, m1.small, t1.micro, t2.nano, or t3.nano instances are also excluded from activation. Please contact your Technical Account Manager or Qualys Support to lift this limitation and allow assets with these instance types to be auto-activated based on the connector settings. Once activated, you can launch a cloud perimeter scan for such instances. Alternately, you could use Cloud Agent on such instances.
Next Step