Out-of-band Configuration Assessment

Qualys Out-of-Band Configuration Assessment (OCA) provides a way to assess compliance posture of critical assets that cannot be reached remotely via an external tool or a scanner nor can a third-party agent be installed on them. For example, PLC networked systems or highly secretive banking hosts.

Qualys OCA enables you to secure these offline assets against mis-configurations. OCA assesses these offline devices based on device configuration files and the output of the device config file of the commands instead of pulling the configuration data from the scanners or agents.

Configuration files of each asset are pushed to Qualys cloud platform using the 'Push data mechanism'. For some assets, a dump of the output of certain commands as per the assessment required can be pushed directly. Qualys maintains a library of configuration datapoints and controls and uses them for the assessment. You can use OCA to assess the security of these critical and disconnected assets and include them in the overall Risk and Compliance program, making it easy for both audit teams as well as the protective asset owners.

About this Document

This document includes the release highlights or What's New for every release, new QQL tokens introduced in the release, and a summary of customer CRMs fixed. 

Additional Resources

The following are the OCA documentation resources:

Online Help

Release Notes Page (Previous Release Notes published in the PDF format)