Assign vulnerable items to groups
Configure OT Vulnerability assignment rules.
Avant de commencer
OT Vulnerable Items can be assigned to site level groups or groups based on classification, depending on your remediation strategy.
Role required: sn_sec_wf.manage_admin_rules
Pourquoi et quand exécuter cette tâche
When Vulnerable Items are imported, they are assigned to the appropriate group based on Vulnerability Assignment Rules. Operational Technology Vulnerability Response ships with one OT vulnerability assignment rule, Operational Technology (OT) assignment rule, which assigns OT vulnerable item records (VIT) to the corresponding OT VR assignment group based on its site. If it does not belong to any site, or if there's no group specified on the site, the rule assigns to the OT VR Default Assignment Group.
For more information about creating Vulnerability Response assignment rules, see Create or edit Vulnerability Response assignment rules.
Procédure
- Navigate to .
- Alternatively, navigate to .
- In the Assignment list displayed in the Security Exposure Management Workspace, select Operational Technology (OT) assignment rule.
-
Configure it based on your remediation strategy:
- If your remediation strategy is to assign all OT Vulnerable Items to the site, set the execution order of the OT VR Assignment rule to be less than all other rules.
- If your strategy is to assign by class and then assign to sites for all other classes, set the execution order of the OT VR Assignment Rule to be greater than all class-based rules.
- Once the execution order is updated, set the OT VR Assignment Rule Active state to true.