Creating Authentication Records

Once you have configured Secret Server as an authentication vault in Qualys, you must configure individual authentication records to retrieve the credentials to be used in scans from Secret Server

To create authentication records:

1. Navigate to Authentication > New and select the authentication type.

2. Provide the following details to enable the retrieval of credentials from a secret in Secret Server:

3. • Vault Type: Select Secret Server.
   • Vault Title: The previously created authentication vault record in Qualys.
   • Secret Name: The name of the secret in Secret Server containing the account's password. For example, the secret name for a Windows account can be "Qualystest."

   The secret name must match the name of the secret in Secret Server.

   The application account that you specified for accessing Secret Server(see Configuring Secret Server as a Vault in Qualys) must have at least the View permission for the secret.

4. Go to Scan > Authentication.

5. In the New dropdown list, select Windows Record.

6. Select Share to view the permissions on the secret.

Qualys will use the information in the authentication record to retrieve the password to use for authentication during scans from the specified secret.