SCAP Cyberscope Report - Policy Results

/api/2.0/fo/asset/host/cyberscope/fdcc/policy/

[GET]  [POST]

Create a Cyberscope report using scan results data saved for a particular SCAP policy in the user’s account. This report is supported using PC/SCAP.

The service uses automatic SCAP policy data for a selected policy and reports this in the datapoint <sr:DataPoint id:"configuration_management_agency_deviations">. The services uses the evidence data for the special rule "security_patches_up_to_date" and reports this in the datapoint <sr:DataPoint id:"vulnerability_management_product_vulnerabilities">.

Permissions - Users must have the PC and SCAP modules enabled for the subscription. Sub-accounts (Unit Managers, Scanners and Readers) must have the "Manage compliance" permission enabled.

Cyberscope report specification and the LASR format  

Input Parameters

Parameter

Description

policy_id={value}

(Required) Specify a SCAP policy ID.

To obtain the SCAP policy ID, log into the Qualys application and go to PC/SCAP > Policies to view the policies in your account. Hover over the SCAP policy that you’re interested in and edit it (select Edit from the Quck Actions menu). You’ll see the policy editor URL in your browser and the policy ID value appears in the "id" parameter, as shown in this sample URL:

https://qualyguard.qualys.com/fo/fdcc/edit_policy.php?id=12345&refresh_parent=1

ips={value}

(Optional) IPs and/or IP ranges used to filter the report output. Specified IPs are included in the report. Multiple entries are comma separated.

as_ids={value}

(Optional) IDs for asset groups to filter the report output. IPs in specified asset groups are included in the report. Multiple entries are comma separated.

organization_name1={value}

organization_name2={value}

organization_name3={value}

(Optional) Organization name values.

When the parameters organisation_name1, organisation_name2, and organisation_name3 are specified, the <ai:Organization> elements are included in the XML report.

Sample - Select SCAP policy

API request

curl -u "USERNAME:PASSWORD" -H "X-Requested-With: Curl" "https://qualysapi.qualys.com/api/2.0/fo/asset/host/cyberscope/fdcc/policy/?policy_id=30231&organisation_name1=Name1&organisation_name2=Name2&organisation_name3=Name3"ame1&organisation_name2=Name2&organisation_name3=Name3"

Sample - Select SCAP policy and report on certain IPs

API request

curl -u &quot;USERNAME:PASSWORD&quot; -H &quot;X-Requested-With: Curl&quot; &quot;https://qualysapi.qualys.com/api/2.0/fo/asset/host/cyberscope/fdcc/policy/?policy_id=17012&amp;ag_ids=397405&amp;ips=10.10.25.70&amp;organisation_name1=Name1&amp;organisation_name2=Name2&amp;organisation_name3=Name3&quot; &quot;https://qualysapi.qualys.com/api/2.0/fo/asset/host/cyberscope/fdcc/policy/?policy_id=17012&amp;ag_ids=397405&amp;ips=10.10.25.70&amp;organisation_name1=Name1&amp;organisation_name2=Name2&amp;organisation_name3=Name3&quotips=10.10.24.10&organisation_name1=Name1&organisation_name2=Name2&organisation_name3=Name3"Name3"

Sample - Select SCAP policy and report on certain asset groups

API request

curl -u "USERNAME:PASSWORD" -H "X-Requested-With: Curl" "https://qualysapi.qualys.com/api/2.0/fo/asset/host/cyberscope/fdcc/policy/?policy_id=17012&ag_ids=397405&ips=10.10.25.70&organisation_name1=Name1&organisation_name2=Name2&organisation_name3=Name3" "https://qualysapi.qualys.com/api/2.0/fo/asset/host/cyberscope/fdcc/policy/?policy_id=17012&ag_ids=397405&ips=10.10.25.70&organisation_name1=Name1&organisation_name2=Name2&organisation_name3=Name3"