Skip to content
/ zero_touch_api_based_assessment Public

Deploy pre-requsites for Qualys Zero Touch API Based Assessment

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

Qualys/zero_touch_api_based_assessment

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

18 Commits
EventBridgeCF.yml
EventBridgeCF.yml
 
 
EventBridgeCrossRegion.yml
EventBridgeCrossRegion.yml
 
 
README.md
README.md
 
 
specify_stack.png
specify_stack.png
 
 

Repository files navigation

Qualys Zero Touch API Based Assessment

Deploy pre-requsites for Qualys Zero Touch API Based Assessment

License

THIS SCRIPT IS PROVIDED TO YOU "AS IS." TO THE EXTENT PERMITTED BY LAW, QUALYS HEREBY DISCLAIMS ALL WARRANTIES AND LIABILITY FOR THE PROVISION OR USE OF THIS SCRIPT. IN NO EVENT SHALL THESE SCRIPTS BE DEEMED TO BE CLOUD SERVICES AS PROVIDED BY QUALYS

Usage:

For more information, please refer: https://docs.qualys.com/en/tc/latest/#t=get_started%2Fgetting_started.htm Follow the below mentioned steps to deploy below to deploy pre-requsites for Qualys Zero Touch API Based Assessment.

EventBridge Deployment

  1. Login to AWS Console and navigate to CloudFormation.
  2. Stack > Create Stack > With new resources (standard).
  3. In 'Specify template', upload the template file. --> EventBridgeCF.yml
  4. Click Next.
  5. Under Specify stack details, provide Stack name.
  6. In APIGatewayURL parameter, provide the Qualys API Gateway URL. Find the Gateway URL at https://www.qualys.com/platform-identification/
  7. Follow below steps to Genrate Subscription Token using Curl Calls.
  8. Generate Auth token. --> curl --location --request POST 'https://< API Gateway URL >/auth' --header 'Content-Type: application/x-www-form-urlencoded' --data-urlencode 'username= --data-urlencode 'password='--data-urlencode 'token=true'
  9. Generate Subscription Token. --> curl --location --request POST 'https://< API Gateway URL >/qas/subscription-token' --header 'Content-Type: application/json' --header 'Authorization: Bearer Auth Token --data-raw '{ "expiry": 500000}'
  10. Provide the Subscription Token and click next.
  11. Keep the default settings step 3 and step 4.
  12. Click Next > Submit.

Cross-Region Event Routing

  1. Login to AWS Console > Navigate to CloudFormation
  2. StackSets > Create StackSets
  3. Permissions
  4. IAM Role: Select the StackSet Administrator Role Name that was created as part of the previous stack deployment.
  5. IAM execution role name:- Enter the StackSet Execution Role Name that was created as part of the previous stack deployment.
  6. Prerequisite - Prepare template
  7. Template is ready.
  8. Specify template.
  9. Upload a template file. (EventBridgeCrossRegion.yml) https://github.com/Qualys/zero_touch_api_based_assessment/blob/main/EventBridgeCrossRegion.yml
  10. Click “Next”
  11. StackSet Name:- Qualys-cross-region-event-bridge
  12. Parameters
  13. RoleArn :- Enter the Qulays API Based Assessment Role Bus ARN that was created as part of the previous Stack Deployments
  14. StackRegion : Enter the EventBridge Deployment Region
  15. Click “Next” --> “Next”
  16. Set deployment options
  17. Accounts > Deploy stacks in accounts
  18. Enter account numbers where the stack needs to be deployed
  19. Specify regions:- Select the regions for Cross Region Event Routing
  20. Deployment options
  21. Region Concurrency: Parallel
  22. Click “Next” -> Submit

Important links

Note: For Qualys Zero touch API Based Assessment, make sure that your EC2 instance has the SSM Agent installed and has SSM Inventory Configured. For more information, refer the below links:

About

Deploy pre-requsites for Qualys Zero Touch API Based Assessment

Resources

Readme
Activity
Custom properties

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published