Patch orchestration with the Vulnerability Response Workspaces
You can manage patches and patch deployments for critical vulnerabilities for large groups of your assets with Patch orchestration with Vulnerability Response.
Patch orchestration in the Workspaces
Patch orchestration with the Vulnerability Response application uses scheduled imports from third-party solution integrations, patch vendors, and vulnerability scanners.
Patch orchestration with the Vulnerability Response application is supported in both the classic environment and the Vulnerability Response workspaces. Correlated data is rolled up and displayed in both the workspaces and the classic environment. For an overview about the features, requirements, and information about patch orchestration in the classic environment, see Patch orchestration with Vulnerability Response.
- For more information about the supported integrations with patch vendors, see Understanding the HCL BigFix patch orchestration integration with Vulnerability Response and Understanding the Vulnerability Response patch orchestration integration with Microsoft SCCM.
- For information about how to schedule patches form records in the workspaces, see Schedule patches with the Microsoft SCCM integration with Vulnerability Response and Schedule patches with the Vulnerability Response patch orchestration integration HCL BigFix.
Available versions of applications and dependencies required for the patch orchestration integration
To view patch Orchestration data and available updates (patches) in the workspaces in Vulnerability Response, the following applications are required. All applications listed are available in the ServiceNow® Store. Some applications require separate subscriptions. See Patch orchestration with Vulnerability Response.
Roles required
In addition to the sn_vul.vulnerability_analyst or sn_vul.vulnerability_admin roles required for the Vulnerability Response Workspaces, users need roles that are specific to the patch orchestration integrations you are using to view data and schedule patches. See the following supported integrations for more information about these roles.
See Understanding the HCL BigFix patch orchestration integration with Vulnerability Response and Understanding the Vulnerability Response patch orchestration integration with Microsoft SCCM.
Patch data in the Vulnerability Response Workspaces
In the IT Remediation Workspace, you can view patch data in the workspaces:
- On the Home view, click scorecards to view records for Preferred solutions on VIs, Vulnerable CIs, and Preferred Patches on VIs.
- On the List view, view all the Patch Update records (VPUs) and the vulnerable items that are assigned to you that have patches from the available links.
You can schedule patches from the following records:
- Patch Update (VPU)
- Remediation task (RT)
- Discovered Item (SDI)
In the Vulnerability Manager Workspace, you can view patches:
- From the Home view on watch topics on the Vulnerable Items tab, you can view preferred and potential patches, Patch scheduled dates, and other information.
- From the List view on remediation effort records, you can view patch data on VIT records on the Vulnerable Items tab.