Is there a way to identify remediation tasks that have VITs with different assignment groups
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-16-2023 09:05 AM
Hi,
Checking if there's a way to identify remediation tasks that have VITs with different assignment groups?
Also can we safely "Delete" a remediation task? For example VIT00001 is part of two remediation tasks VUL00001 and VUL00002 and the team decided to delete VUL00001, will VIT00001 be also deleted even though its associated with another remediation task(VUL00002). We have some duplicate remediation tasks like the above scenario and would have to delete them.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-20-2023 01:11 PM - edited 11-20-2023 01:16 PM
The "Vulnerability Group Item [sn_vul_m2m_vul_group_item]" table is the many-to-many table between Remediation Tasks and Vulnerable Items. If you use the filter
https://[your system_here].service-now.com/sn_vul_m2m_vul_group_item_list.do?sysparm_query=sn_vul_vulnerability.assignment_groupNSAMEASsn_vul_vulnerable_item.assignment_group&sysparm_view= on the table you can see the records that don't match. Unfortunately you can't add the column for Assignment Group from the task table to see the differences. So I would do this in a report and add the assignment group from both tables.
Deleting a remediation task does not, in my experience, cascade to vulnerable items. We have deleted tasks for the very same reason you are proposing, using the UI function, and for other reasons using fix scripts. I don't know if there are any cases where it would cascade to the vulnerable item, so I would advocate simulating your actions in a test environment.
