Integrating Qualys with Secret Server

Third-party vendors create and maintain this integration. Delinea does not guarantee that the integration will work properly or that it respects Delinea product limitations. Delinea has not reviewed this integration and Delinea Support staff can only assist with the Delinea side of setup.

The integration between Qualys and Secret Server enables Qualys to use Secret Server On-Premises as a password vault to log in to target machines for authenticated scans. Instead of adding individual credentials for trusted scans, the administrator can use named records stored in Secret Server. When Qualys runs an authenticated scan on a target machine, the scanning appliance connects to Secret Server, searches for a specified secret name, and retrieves the password from the secret returned by the search. The appliance then uses the information retrieved from the vault to log into the target machine and perform a trusted scan.

The integration offers the following benefits:

Using Secret Server as a vault ensures that all the credentials used for authenticated scans are stored securely on-premises and will not leave the network.
You can configure automatic password rotation in Secret Server to have the password on a secret changed automatically after it is used for a scan.
Secret Server includes a secret audit log that provides a detailed view of all changes to the credentials in the secret.

The integration works only with Secret Server On-Premises.

To learn more about the integration between Secret Server and Qualys, see the Qualys documentation.

For more information about this integration, also see the following topics: