Remove assignments from vulnerable items for you or your groups

  • Release version: Washingtondc
  • Updated February 1, 2024
  • 2 minutes to read

    • Reassign vulnerable item records in the Vulnerability Response and Application Vulnerability Response applications.

    Before you begin

    Role required: sn_vul.remediation_owner

    About this task

    If you determine that vulnerable items (VITs) aren’t within your scope for remediation, or if you think that records have been incorrectly assigned to you or to your groups, you can remove yourself or your groups from the Assigned to and Assignment group fields on vulnerable item and remediation task records.

    The Unassign button is displayed on the following records in any state other than Closed or Resolved:
    • Remediation tasks (VULs) in both the classic environment and the Vulnerability Response Workspaces. If a remediation task is updated with this feature, the Assigned to andAssignment group fields on all of its associated VITs are also cleared.
    • Vulnerable items (VITs) in both the classic environment and the Vulnerability Response Workspaces.
    • Application vulnerable items (AVITs).
    • Container vulnerable items (CVITs).

    Procedure

    1. In either the classic environment, or in the IT Remediation Owner Workspace, navigate to a vulnerable item (VIT) record that is assigned to you that is in any state other than Closed or Resolved.
    2. To clear the Assigned to and Assignment group fields, at the top of the record, select Unassign.
    3. Optional: Alternatively, navigate to an AVIT that is assigned to you or your groups and click Unassign to clear the assignment fields.
    4. In the Unassign dialog, provide work notes and select Submit.
    5. Optional: If you want to clear the assignment fields for multiple VITs on a list, select the VITs you want and then select Bulk Edit.
      1. On the Vulnerable Item Bulk Edit dialog, select Only Selected Vulnerable Items in the Record Selection field, select the Unassign check box, and select OK.
        For more information on bulk edits, see Bulk edit Vulnerability Response vulnerable items.
      2. Select the remediation task ID that displays in the notification.
    6. View the following information:
      • The work notes that you provided is displayed in the Notes section.
      • On the State Change Approval tab, the state change approval record displays with the In Review state, which helps to track the approval workflow.
      • On the Requested Approvals tab, your request for the removal of you or your assignment group is displayed in the Requested state.

    Result

    The request is approved by using a default, one-level approval workflow. For more information, see Approve requests in the Vulnerability Manager Workspaces.

    • If your request is approved, the state change approval record and the requested approval record transition to the Approved state. You and your groups are removed from the Assigned to and Assignment group fields. Unassigned is displayed in the Assignment type field, and the remediation task and VITs are displayed in the list of the Unassigned module for Configuration Compliance.

      Notifications that records are unassigned are sent automatically to vulnerability managers or analysts in the Unassign notification group. To configure the approval flag, notifications, and default assignment group, see Removing assignments from vulnerable items and remediation tasks.

    • If your request is rejected, the state of the change approval record and requested approval record transition to the Rejected state.
    Note:
    As a vulnerability administrator, you can set the sn_vul.unassign_vr.approval_required system property to false to disable the approval process.

    What to do next

    Navigate to the Unassigned modules for the Vulnerability Response and Application Vulnerability Response Container Vulnerability Response applications, monitor any unassigned records for items that might fall under your scope, and reassign them to yourself.