Forum Discussion
Can I use ASC Workflow automation to install Qualys agent?
Yes. i just created a working sample here
Nicholas DiCola (SECURITY JEDI)
Thx a million - I just tried to deploy the playbook and got the following error:
whoops forgot the dependson. in the resource.
just fixed the template.
Nicholas DiCola (SECURITY JEDI)
Thx again Nick - for my edification, the workflow will kick in when it sees an unhealthy resource in the Enable the built-in vulnerability assessment solution on virtual machines (powered by Qualys) (Preview) recommendation, correct?
We have some VMs that are powered off so I am assuming when they get powered on, the workflow will run to install the Qualys agent.
And last question, can you point me to some documentation about ASC workflow?
TYVM
yes but you need to create the workflow automation like this
here is the docs page https://docs.microsoft.com/en-us/azure/security-center/workflow-automation
Nicholas DiCola (SECURITY JEDI)
Hi Nicholas, thanks for super usefull logic app.
I made the setup you have described, I used automation workflow for ASC recommendation (A vulnerability assessment solution should be enabled on your virtual machines) with logic app to create ARM deployment. And it works well when I trigger Logic App from ASC (Azure Portal) but the automation workflow does not trigger my logic app at all. Is it possible that when the recommendation exist with many VM's in state not-applicable and unhealthy then any new VM which appear with unhealthy state will not trigger automation ? because the recommendation exist ? In short for existing recommendation new resource won't trigger the workflow automation ?
Thanks in advance for any insides ...
Br, Kris
