Configure OT remediation target rules
Configure remediation target rules for OT vulnerable items.
To calculate the remediation target date for OT vulnerable items, load the demo data records for the Operational Technology Vulnerability Response application and configure the remediation target rules.
Role required: sn_sec_wf.manage_admin_rules
To configure OT Remediation Targets or load the demo data records:
- Navigate to
- Or, if you are using version 30.0.x, navigate to .
OT Remediation Targets may be different due to the infrequent opportunities to perform maintenance in an industrial environment. Remediation target rules are applied in order from smallest target to largest target.
A different remediation target date may be needed for OT device vulnerabilities that do not have maintenance windows available in the same time frame as other vulnerabilities. To demonstrate how to configure remediation target
dates in this situation, two demo data records are provided to demonstrate how this can be managed for Critical risk ratings:
- Critical Risk Rating rule (OT only) - This rule uses the condition of Configuration item.OT device details is not empty AND Risk rating = 1- Critical. Update the Target (days) and activate the record.
- Critical Risk Rating rule (exclude OT) - In order to apply a shorter target to Critical Risk non-OT items only, you need to filter out OT devices first. This rule uses the condition Configuration item.OT device details is empty AND Risk rating = 1- Critical. Update the Target (days), inactivate any existing critical target rule, and activate this rule in its place.
Note:
Both of these rules must be activated so that any OT critical risk vulnerabilities
are excluded from the non-OT remediation target rule.
For more information about creating Vulnerability Response assignment rules, see: