IBM AppScan Enterprise scanner overview

QRadar® retrieves IBM AppScan Enterprise reports with the Representational State Transfer (REST) web service to import vulnerability data and generate offenses for your security team.

You can import scan results from IBM AppScan Enterprise report data, providing you a centralized security environment for advanced application scanning and security compliance reporting. You can import IBM AppScan Enterprise scan results to collect asset vulnerability information for malware, web applications, and web services in your deployment.

To integrate IBM AppScan Enterprise with IBM QRadar, you must complete the following tasks:

  1. Generate scan reports in IBM AppScan Enterprise.

    Report configuration information can be found in your IBM AppScan Enterprise documentation.

  2. Configure AppScan® Enterprise to grant QRadar access to report data.
  3. Configure your AppScan Enterprise scanner in QRadar.
  4. Create a schedule in QRadar to import AppScan Enterprise results.

To configure IBM AppScan Enterprise to grant permission to report data, your AppScan administrator must determine which users have permissions to publish reports to QRadar. After AppScan Enterprise users configure reports, the reports that are generated by AppScan Enterprise can be published to QRadar, making them available for download.

To configure AppScan Enterprise to grant access to scan report data, see Creating a customer user type for IBM AppScan Enterprise.