I am wondering how the Exception Questionnaire in Vulnerability Response is useful for approvers/where the answers can be found? I know the metric results and assessment instance questions are linked to the state change approval record, but they aren...
Hi All, I am using Tenable.sc for my client and I see the rescan does not work at all and we get the following error message:An error occurred while initiating the rescan. Attributes such as repository_id or family_id might be missing. When I click ...
Im trying to apply a machine_filter for importing machines from Microsoft TVM in VR. The filters the machines being imported as CIs, but doesn not filter the vulnerabilities on machines, so we end up with a lot of vulnerabilities that we do not want ...
Could someone please guide me on how I can "delete" or "deactivate" a Remediation Effort? It seems according to ACLs, no one can delete an effort, even Admins. But it appears there should be a way to deactivate one, but it is all grayed out. Are th...
Is there a way to setup email notifications for when incident tasks are opened and assigned to a particular group or person, so they know they have a task assigned? Oops, wrong forum, sorry, not sure how to delete
Hi ServiceNow Community,We are in the middle of implementing a new VR instance for a customer using the Tenable Vulnerability Integration plugin for both Tenable.io and Tenable.sc. How would I be able to access the 'Patch Published' field from Tenabl...
Hey community,In the vulnerability items table there is a field called "Reopened" which is by default a True/False field.I have a ask to make that field show a date when the Vulnerability reopened. Is there a way to achieve this?Thanks in advance
We have various VITs, like for QID-106032 (Apache Log4j 1.X Detected), where in the results there are a dozen or two locations of Log4j jar files. In these instances, each of those locations in owned by a separate application team. Is there a way to...
Hi All, I am currently working through a project to get data from various API's and out into Azure container storage. This involves a runbook in Azure that, on a schedule, pulls data from the various API's and stores this in the Azure blob storage. I...
Got a request in to add new States into Security Incidents. I've been looking to try and add these, but while I can add them to the Choice List, they will not appear in the drop down at any point. Also can't see to add anything to the Process Flow as...
Hi, We use Qualys integration with Vulnerability Response and have used the Vulnerable Item.Last Found field to determine the last time a vulnerability was found on the vulnerable item. However, if the Vulnerable Item has multiple detection records, ...
I am currently working on the requirement which wants me to add few lines of code in the business rule "Major Incident Assignment" (OOB BR), if the incident is promoted as major incident then I need to compare the group type, if group type is itil,...
Requesting you to kindly share the implementation checklist for Vulnerability Response module?
I am trying to update an incident ticket automatically. One of the fields (u_vendor) is a list, not a simple string value, and it's not updating properly. This is the json that I am sending: {"state":"-5","u_on_hold_type":"awaiting_vendor","u_vendo...
Hi All, I have a query related to remediation task rules. Normally when we run the remediation task rules it delete the open remediation task and re-create it. Now, the query arises: If a vulnerability analyst addresses a remediation task and marks i...
