Qualys Blog

www.qualys.com

Integrating QualysGuard Data with RSA Archer

Is your organization using RSA Archer to manage your governance, risk and compliance program? Would you like to integrate vulnerability and configuration data from QualysGuard? RSA Archer integrates with both QualysGuard Vulnerability Management (VM) and Policy Compliance (PC) through the QualysGuard XML APIs and RSA Archer’s Data Feed Manager (DFM).

Why RSA Archer?

RSA Archer is the leading enterprise governance, risk and compliance (GRC) solution. Qualys, Inc. is the leading provider of on demand IT security risk and compliance management solutions — delivered as a service. Since Qualys and RSA Archer have a large number of joint customers, it was logical to integrate our solutions, allowing customers to maximize their investment in both solutions.

RSA Archer Integration

The integration imports two types of data from QualysGuard into RSA Archer:

Vulnerability Management

Using the QualysGuard VM scanning infrastructure, vulnerability data can be collected for all enterprise assets in an automated and accurate manner. This integration automatically updates RSA Archer with asset vulnerability data to be used in remediation efforts.

Policy Compliance

The integration of QualysGuard PC with RSA Archer allows customers to automatically import compliance scan information into their RSA Archer environment. This allows asset owners to report on compliance issues identified on their assets in one single view.

RSA Archer’s integration leverages the QualysGuard XML API v1 and v2 frameworks. In addition to the QualysGuard APIs, RSA Archer uses the Data Feed Manager to integrate data within RSA Archer.

Integration Guide

For full integration details with RSA Archer, please download the QualysGuard RSA Archer Integration Guide.

12 responses to “Integrating QualysGuard Data with RSA Archer”

  1. I have successfully integrated the Qualys VM results into Archer.  However, within the last quarter a Qualys change has taken place which effects the XML structure that is being sent into the Archer DataFeed Manager.  As a result, the xslt file that is included within the integration documentation is no longer properly parsing the data.  Any ideas on where I can obtain a copy of a current xslt file?

    • Zack,

      The VM integration uses a scan report template.  I am unaware of any changes to the output of this report that might cause the translation within Archer to fail.  Do you have an idea which new element was added or removed?  I’ll continue to research on our side, but we have many customers using this integration and no one else has reported this issue.

    • Hi Nimbus,

      Please let me know, can we integrate Qualys policy controls and pc results to archer? Is there any document available for Qualys Policy compliance integration with Archer.

      Thanks in advance
      Bharath Bhat

  2. I’m having issues which are similar to what zack is/was experiencing. We’ve built a scan template, being sure to include the appendix data, however when the scan is run, there is no appendix data. The appendix data does show up when the scan is run as a report though. any hints?

    thanks

    • Jason,

      I just went through this last year/2years ago and there wasn’t much out there, or if it was it was quite dated and not 100% correct. I will say it looks like Qualys and Archer (RSA) have been working together on the new Archer VRM product which will take out alot of the manual steps and Curl Scripts and XML. I am guessing the new documentation is still in the works.

      I know the guy who built the new product at Archer was at Qualys then Archer and I believe back at Qualys so you might want to get in touch with him, I know we are going to here in a week or so.

  3. Hi all, I have 1 query regarding the Qualys Integration with Archer. Does the Score Card reports from Qualys guard will be also integrated to Archer? If yes can some help me what all the steps to be followed. Any help on this will be much appreciated.

  4. Hi All,

    As per API V2 document by using curl we can import the posture list to archer. But the details like Evidence, Extended Evidence and Control Summary are not retrievable. Please suggest.

    Please share if any documents available for How to integrate Qualys PC with Archer.

    • Abhishek a long time ago Archer (before being purchased by RSA) had a “one-off” integration with Qualys. At some point RSA Archer no longer supported that integration and/or it was no longer downloadable by customers. If you ask your RSA Archer rep about a Qualys integration, they will probably tell you that it will have to be built custom by RSA Archer professional services at your company’s expense.

      Qualys has repeatedly asked RSA Archer to provide a COTS integration to Qualys, but it still hasn’t been built.

Leave a Reply