Configure the Vulnerability Response Integration with Palo Alto Networks Prisma Cloud Compute application

  • Release version: Xanadu
  • Updated August 1, 2024
  • 1 minute to read

    • Install and configure the Vulnerability Response Integration with Palo Alto Networks Prisma Cloud Compute application to import data from Prisma Cloud Compute. You can use the imported data to prioritize and remediate vulnerabilities for your hosts.

    Before you begin

    Role required: admin

    Procedure

    1. Open the email from ServiceNow that you received about the integration.
    2. Log in to your instance as an admin.
    3. Follow the instructions in the email to get the Vulnerability Response Integration with Palo Alto Networks Prisma Cloud Compute.
    4. Navigate to All > Prisma Cloud Compute Integration > Administration > Configuration.
      On the Prisma Cloud Compute Configuration form, fill in the fields. For more information, see Prisma Cloud Compute Configuration form.
    5. From the Projects list, select either All Projects or Specific Projects to configure either all projects or selected projects respectively.
      If you select Specific Projects, you can select the projects from the Available list.
    6. Complete the configuration by selecting either Finish or Save and Test Credentials.
      • If you configured a project, select Finish.
      • If you didn’t configure a project, select Save and Test Credentials
    7. View the newly created instance by navigating to Prisma Cloud Compute Integration > Administration > Integration Instances.
    8. View the projects that you configured earlier by selecting Integration Instance Parameters.
    9. Run the newly created integration instance to import the vulnerable items.
      The VITs are further created based on the granularity.
    10. Configure the granularity of a vulnerable item.
      1. Navigate to Prisma Cloud Compute Integration > Configure Image Vulnerability Keys
      2. Configure the granularity of the VITs by selecting the required check boxes.
        The vulnerable items are created based on the selected keys during the next import.
        Note:
        By default, a VIT is created for a combination of Image Repository,] Vulnerability, and Image tag. You can add components to the key for further granularity. For example, you can create a CVIT for a combination of Image Repository, Vulnerability, Image tag, and Cluster. Once the vulnerable items or vulnerable item findings are created, the check boxes are no longer editable.