Advanced Search

The Advanced Search feature allows you to perform specific searches on IQ Server database. You can define your search criteria based on:

  1. Organizations
  2. Applications
  3. Application Categories
  4. Component Labels
  5. Components
  6. Policies
  7. Security Vulnerabilities

Getting started with Advanced Search:

Login as System Administrator to configure the IQ Server for advanced search.

  1. Enable Advanced Search: This is required to make your data searchable within the IQ  Server database. Newer versions of IQ Server have this enabled by default.
    1. Go to System Preferences on the top right main menu bar.
    2. Click on Advanced Search from the list of preferences to go the Advanced Search Configuration page.
    3. Check the Enabled box. 
  2. Create a Search Index: A search index is required to use the Advanced Search feature. Creating a search index is a resource-intensive operation and may take a few minutes to complete. We recommend creating the search index during minimal usage times. 
    1. Scroll down the Advanced Search Configuration page.
    2. Click the Re-index button. This will create a new search index. The search index updates automatically each time the application data changes, when the Advanced Search feature is enabled.

System Administrators can create a search index from the Advanced Search configuration page accessible from the System Preferences menu or by using the Advanced Search REST API. Ensure that the Enabled check box is checked, before clicking on the Re-index button. After successfully creating a search index, you will see the last indexed time.

Automatic Re-indexing NEW IN RELEASE 100

Advanced Search automatically re-indexes when any changes are made to the following IQ Server application data.

  • Organizations
  • Applications
  • Application Categories
  • Component Labels
  • Policies
  • Security vulnerabilities that impact you

Automatic indexing only applies to data changes made while the feature is enabled. Advanced Search to index historical data, you must run a manual index.

Enabling Advanced Search

Advanced Search is enabled by default and the search index is created automatically. NEW IN RELEASE 100

Prior to release 94, Advanced Search results were not restricted by user permissions. IQ Server users could view the results for items that they did not have permissions on, but access to these items was still restricted.

For prior versions, after a search index has been successfully created, enable the Advanced Search feature to make it available to all users. To do this a System Administrator must enable Advanced Search through IQ Server's UI via its configuration page.

Performing a Search

When Advanced Search is enabled, IQ Server users will have the option of performing a search.

Clause Count Limit in Queries NEW IN RELEASE 136

Advanced Search feature attempts to retrieve results from large data sets comprising of multiple organizations and applications. There is an inherent risk that running Advanced Search with too many query parameters will monopolize the service resources. We have placed in-built query limits to avoid such scenarios. You will see am error message asking to narrow down the query clause. If narrowing down the query clause is not possible, you can change the query limits using the following method:

For release 141 and prior, edit the config.yml file as shown below:

# 2048 is the default value
maxAdvancedSearchClauseCount: 2048

For release 142 and later, configure the maxAdvancedSearchClauseCount using the Configuration REST API.


Need a video? Watch a short primer about Advanced Search at this link, or view below!