Assign vulnerable items to groups

  • Release version: Xanadu
  • Updated August 1, 2024
  • 1 minute to read

    • Configure OT Vulnerability assignment rules.

    Before you begin

    OT Vulnerable Items can be assigned to site level groups or groups based on classification, depending on your remediation strategy.

    Role required: sn_vul.manage_assignment_rules or sn_vul.vulnerability_admin

    About this task

    When Vulnerable Items are imported, they are assigned to the appropriate group based on Vulnerability Assignment Rules. Operational Technology Vulnerability Response ships with one OT vulnerability assignment rule, Operational Technology (OT) assignment rule, which assigns OT vulnerable item records (VIT) to the corresponding OT VR assignment group based on its site. If it does not belong to any site, or if there's no group specified on the site, the rule assigns to the OT VR Default Assignment Group.

    For more information about creating Vulnerability Response assignment rules, see Create or edit Vulnerability Response assignment rules.

    Procedure

    1. From the Vulnerability Assignment Rules list, select Operational Technology (OT) assignment rule.
    2. Configure it based on your remediation strategy:
      • If your remediation strategy is to assign all OT Vulnerable Items to the site, set the execution order of the OT VR Assignment rule to be less than all other rules.
      • If your strategy is to assign by class and then assign to sites for all other classes, set the execution order of the OT VR Assignment Rule to be greater than all class-based rules.
    3. Once the execution order is updated, set the OT VR Assignment Rule Active state to true.

    What to do next

    Configure OT remediation target rules.