Report Template Settings

Details

Name the report template

Give it a name that will help you (and other users) to easily select it when you create a new report.

Are you adding a new report template? You'll notice you are the owner by default. Want to assign it to someone else? No problem, just save the template first and then edit it.

Owner

Initially, the user who creates the report template is the owner by default. You can edit the report template after it is saved and select another user in your subscription as the owner.

Make this the default template?

Select "Make this the default report template..." and we'll select this template type by default in a new report - a report run by you or another user in your subscription. You can define only one default template for each template type in your subscription.

What is the focus of the report?

You'll select a report type to tell use what data (records, fields) to make available for your report. Click Continue in the wizard to define filters (what to include) and then display options (what to show, not show).

Why apply tags?

The template owner and all Managers will be able to view this template and create reports using it, once it's saved. Applying tags lets a Manager make this report template available to other users. These are the steps (Manager only): 1) go to the Administration utility, and 2) add at least one of the template's tags to each user's scope.

Exclude Qualys username from reports

Select the Exclude Qualys username from reports check box and we will not include the account login ID in any of the downloaded reports.

 

Filter

What vulnerabilities to include

You might want to limit your report to certain vulnerabilities. It's easy - just add search lists (or vulnerability sets) and then  include or exclude them. Each search list defines one or more vulnerabilities (QIDs). Need to create new search lists? It's easy - just click the links to add them. "Create static list" lets you add a list of vulnerability QIDs. "Create dynamic list" lets you define vulnerability criteria - we'll apply this criteria when we create your report.

What findings to include

Include vulnerabilities detected for a specific URL. Enter any part of the URL in the field provided.

Filter vulnerabilities by status. Select the check box for each status you want to include in the report and clear the check box for each status you want to filter out of the report.

What about ignored findings?

By default, ignored findings will not appear in reports created with this template unless you choose option(s) here. You have the option to include ignored vulnerabilities and sensitive contents. It's possible to include ignored findings in addition to or instead of non ignored findings.

Scorecard Report

Filter by scan date

This lets you limit the report to web applications that were scanned in a certain timeframe. Just click "Select a date" to pick the timeframe (e.g. today; within the last week or month; on, before or after a specific date; within a specific date range).

Filter by scan status

This lets you limit the report to web applications that had a certain scan status for the last scan.

Filter by authentication status

This lets you limit the report to web applications that had a certain authentication status for the last scan.

Catalog Report

Filter by entry status

This lets you limit the report to catalog entries based on the entry status.

Filter by creation date

This lets you limit the report to catalog entries created in a certain timeframe. Just click "Select a date" to pick the timeframe (e.g. today; within the last week or month; on, before or after a specific date; within a specific date range).

Filter by FQDN

This lets you limit the report to catalog entries with a certain FQDN.

Filter by operating system

This lets you limit the report to catalog entries with a certain operating system.

 

Display

What contents to display

Click to highlight the components you want to include in reports created with this template. Grayed components are omitted from the report. Note that to include selected graphs in the report, you must select the Graphs component.

Tell me about results grouping and sorting

The left column shows the included vulnerability groups and the order in which they will appear in reports created with this template. Add groups to the report by clicking them in the right column. Groups are automatically added to the bottom of sorting order. You can define the sorting order by removing groups and adding them in the order you prefer.

How to display severity

By default severity levels 1 to 5 (Lowest to Critical) are displayed in reports created with this template. You have the option to choose Low, Medium and High.

Tell me about Custom Footer

Define a customized footer and it is displayed in the WAS report:Web application report and scan report (HTML and PDF formats). Use the report template when you generate the report and the custom footer is displayed in the reports.