Hi guys, TLDR: Mac Address CI Lookup Rule returning Network Adapter as CI to populate VIT's when it is meant to be the parent CI. I have integrated Vulnerability Response with Tenable and am having some issues with the CI Lookup Roles - specifically ...
Hi, we are currently in the process of implementing Prisma Cloud integration with Config Compliance. Seeing strange issues with Test Result Groups (TRGs). Throughout the course of the day, TRGs (Test Result Groups) are being deleted and created. Cons...
Dear All, Kindly note I've followed the below steps but still I'm unable to achieve my target to Allow Group Managers to Manage Group Members, even the admin is unable to edit the group members when we added " https://www.servicenowguru.com/system-de...
We are testing importing scan data from multiple sources ( Crowdstrike Spotlight and Tenable) into our Dev instance. Is there an easy way to see if any duplicate VITs are created for the same assets.The only way the documentation shows is using the w...
When and what makes threat lookup trigger? In what all case the threat lookup gets triggered? Is there some out-of-the box which can make the threat lookup trigger automatically?
Hello, I'm working on the VR items and I want to write the BR for the records to restrict the access of visibility for the records that are groups based on users and groups. For eg: records only visible tot he users having access to specific group. ...
I have a requirement to show the schema map to non-admin users for only few users. I am not able to find a solution to this. Did anyone find a way to give access to schema map to non-admin users. This post explains adding as a UI Action but its only ...
Wondering how other folks out there are using the details from Qualys to import and utilize Information Gathered QIDs, and how you might use those to highlight if the last vulnerability scan properly authenticated (or not) to set expectations of how ...
I configured QualysHostDetectionIntegration to import QDS (Qulays Detection Score) and populate the custom QDS field on the Detections and VITs tables. Now I'd like to use the QDS value to calculate the Risk Score.I can think of these two ways to ach...
Hi all, Does anyone know what sets the short description of remediation tasks? We noticed some remediation tasks descriptions were missing vulnerability information and not sure why this may be occurring.
Our "Success with Vulnerability Response" series of recommended practices deep-dive webinars continues. After the great feedback from the VR Performance and CI Matching calls earlier this month, I am pleased to share with you to the next installment....
Hello, Can someone please help provide information on these:For Tenable integration with Vulnerability Response management, the detection key config needs to be updated to include 'proof' along with port, protocol and asset_id. Is it something to be ...
I recently setup a Rapid7 InsightVM integration with ServiceNow VR and am beginning to populate the Asset List information. I ran the integration, and it completed successfully but I do not see any new Discovered Items created from the integration ru...
I created a few SLAs for Security Incident Response. The SLAs appear to start, as they activate the SLA workflow. However, the "Business time left", "Business elapsed time", and "Business elapsed percentage" always seem to be 0 on every SIR. Any i...
Dear Team, I am trying to create a security incident when phishing email arrives. I went through few docs, that says- Security incident was created automatically, when a record was created in 'Security Incident phishing email' table based on these fl...
