Create a change request in the IT Remediation Workspace

  • Release version: Xanadu
  • Updated August 1, 2024
  • 2 minutes to read

    • From a remediation task (VUL, AVUL, CVUL, or CRG), create a change request. Alternatively, add a remediation task to an existing change request.

    Before you begin

    Role required:
    • sn_vul.remediation_owner for host vulnerable items (VITs)
    • sn_vul.app_security_champion for application vulnerable items (AVITs)
    • sn_vul_container.remediation_owner for container vulnerable items (CVITs)
    • sn_vulc.remediation_owner for configuration test results (TRs)
    Note:
    The itli role is required if you want to submit change requests from the IT Remediation Workspace.

    About this task

    There might be various reasons that you want to create a change request for a remediation task. Usually, it is because your investigation requires manual intervention to fix the vulnerabilities.

    For more information about the change requests and creating change requests from the classic environment, see Change management for Vulnerability Response.

    Note:
    Starting with v19.0 of Vulnerability Response, the following terms have been renamed:
    Table 1. Changes in terminology
    Terminology prior to v19.0 Terminology v19.0 onwards
    Test Result Groups Remediation Tasks
    Configuration Issues Configuration Test Results
    Policy Test group

    Procedure

    1. Navigate to Workspaces > IT Remediation Workspace.
    2. Select the List icon.
    3. On the List page, in the Remediation tasks list, locate a remediation task (VUL, AVUL, CVUL, or CRG) that you want to create a change request for.
    4. In the UI action buttons on the right, expand the list and choose one:
      • Click Create Change
      • Add to existing change
    5. To create a new change request, in the modal that displays, fill in the fields.
      For information on the form fields, see Create change request form fields.
    6. Select Create Change Request.
      The remediation task record displays and a message indicates that the change request is successfully created.

      Click the Change Requests related link on a record to view all the change requests associated with the record.

    7. Alternatively, to add this remediation task to an existing change request, follow these steps.
      1. Click the down arrow to expand the list on the Create Change button.
      2. Select Add to existing change.
      3. In the modal that displays, click the search icon to view the list of existing change requests.
      4. To add conditions to the list to focus the list of change requests, in the upper right of the modal, click the filter icon (funnel).
      5. In the new pane that is displayed, click Advanced view.
      6. Use the condition builder to create your conditions.
      7. Select Update.
      8. From the list, click a change request to select it.
        An updated modal is displayed with your choice.
      9. Optional: In the modal, select the Add CIs to CR check box to add configuration items from all the active vulnerable items to the change request.
      10. Select Add change.
        The remediation record displays, and a message indicates that the change request is successfully created and submitted for approval.
        • Click the View change link in the message to open the change request (CHG) record.
        • Select the Change Requests related item menu link on the remediation task record to view all the change requests associated with the record.

        Alternatively, in the classic environment, navigate to Self-service > My Requests. After you submit the change and it is implemented, if state synchronization is enabled, the remediation task automatically moves to Resolved. For more information about states and state synchronization in change requests, see Create a change request from a remediation task.