Uploaded image for project: 'National Data Service'
  1. National Data Service
  2. NDS-565

Add Qualys monitoring support

XMLWordPrintableJSON

    • Icon: Task Task
    • Resolution: Done
    • Icon: Normal Normal
    • Labs Workbench - Beta
    • None
    • None
    • None
    • NDS Sprint 14

      Qualys is used by NCSA IT for vulnerability assessment and management. Qualys will require SSH access to any public-facing host or service.

      NCSA Security has opened a ticket for this: https://jira.ncsa.illinois.edu/browse/SECOPS-340. We need to:

      • Provide a list of IPs that we want scanned (in general they try to scan one system of each type)
      • Security will provide SSH public key to use to login to local qualys user account.
      • Instructions for setting up Qualys user: https://wiki.ncsa.illinois.edu/pages/viewpage.action?pageId=41461115
      • Provide email address for reports.
      • We will also need to do this to public-facing containers (e.g., Nginx controller)

      This ticket is complete when we have enabled Qualys scanning on cluster nodes.

              willis8 Craig Willis
              willis8 Craig Willis
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated:
                Resolved:

                  Estimated:
                  Original Estimate - 2 hours
                  2h
                  Remaining:
                  Time Spent - 1 hour, 30 minutes Remaining Estimate - 30 minutes
                  30m
                  Logged:
                  Time Spent - 1 hour, 30 minutes Remaining Estimate - 30 minutes
                  1h 30m