Qualys Core

The Qualys Core application manages the connection between ServiceNow and Qualys Vulnerability Management, Detection, and Response (VMDR), including data import, import schedules, vulnerability detection rules, and service-level agreement (SLA) definition.

This app comes with pre-configured attributes, as it is fully automated. However, we have included the steps for creating attributes in case you want to set up your own. See Configure Data Import.

Configuration Steps

Perform the following steps to configure the Qualys Core application:

  1. Configure Basic Authentication Credential - Create a basic authentication credential record in ServiceNow to authenticate the connection.
  2. Configure Connection to Qualys Applications- Configure the connection with Qualys and use Test Connection to know if the connection between ServiceNow and Qualys is working fine.
  3. Configure Data Import - Provide details of import configuration and schedule imports.
  4. Configure Detection Event Rule - Provide details on which vulnerabilities should be added to ServiceNow for creating incidents.

    You can define one-to-one rules for creating vulnerability incidents from the detections and grouping rules to group the vulnerability incidents based on different criteria. You can define the detection event rule to create change requests, which can be used to apply patches to the host assets for remediation.

  5. Configure Assignment Rules - Provide details to create rules for the assignment of incidents to appropriate groups.

  6. Configure Patch Deployment Settings - Define default settings for the patch deployment jobs.

Related Topic

Install the App

 

© 2026 Qualys, Inc. All rights reserved. Privacy Policy. Last updated: January, 2026