The Prism Qualys integration has been improved to support API driven access to poll available scans ready for importing into Prism and to utilise the Automatic Importing of Vulnerability Scan Data.
There is some important information users should be made aware of regarding the implementation of the Qualys API.
The Qualys API enforces limits on the API calls a customer can make based on their subscription level to Qualys.
Please check the documentation at Qualys to determine your api limits.
Qualys API Limits
The imposed limits means that any call made from Prism to the API will count towards your API call limits based on the subscription you hold above.
It may be that features such as Auto Importing will not be possible as Prism will call the Qualys API multiple times a day in order to check if there are any completed scans ready for importing into Prism.
For those clients with Standard API Service and upwards, we don’t envisage there to be a problem with Prism Integration.
Express/Consultant API Service subscribers could see a restricted integration and experience into Prism.
Qualys API Limitations - SSO
Due to limitations with the Qualys API (Link Here), users utilising their SSO feature will be unable to use the API integration with Prism. To fully utilise the Qualys Prism integration features, you would need a user that does not use SSO to leverage the API and importing capabilities in Prism.