Consolidated page of all release notes for Configuration Compliance from Xanadu to Yokohama.
How to use this page
To help you prepare for your upgrade, we have combined the cross-family Configuration Compliance release notes onto one page. Read this summary of the new features, changes, and updated information for your product from Xanadu to Yokohama.
Tip: If there were no updates for a release notes section in a certain family release, we included a short note for your reference. For example, if a product did not have any updates in Tokyo, the row says "No updates for this release."
Important information for upgrading Configuration Compliance to Yokohama
Before you upgrade to Yokohama, review these pre- and post-upgrade tasks and complete the tasks as needed.
| Release |
Release notes |
Xanadu |
No updates for this release. |
Yokohama |
No updates for this release. |
New features
Between your current release family and Yokohama, new features were introduced for Configuration Compliance.
| Release |
Release notes |
Xanadu |
- Identify Wiz Resource Types for import
-
Identify the Resource Types (assets) reported by Wiz in your environment on the Wiz Integration Resource Type configuration page in your ServiceNow AI Platform instance that you want to import.
The Resource Types that you select apply to all the primary Wiz vulnerability and compliance integrations except the Wiz Container Vulnerability Integration.
- Wiz Backfill Integrations
- Retrieve and process data stored on the Wiz Missing Assets [sn_vul_wiz_missing_asset] table for missing assets that were not processed by the primary compliance integrations with specialized Wiz Backfill Integrations.
- Test Results Backfill Integration
- Host Test Results Backfill Integration
- Issues Backfill Integration
The Wiz Backfill Integrations are activated by default.
- Wiz Host Test Result Vulnerability Integration
- Import test results associated with the resource type, VIRTUAL MACHINE with the Wiz Host Test Result Vulnerability Integration. This integration is activated by default.
- New Properties module
- Starting with v15.1 of Configuration Compliance, a new Properties module has been added to the navigation menu under the Administration section. This module enables direct modification of the
values, offering a user-friendly method to manage and update system properties directly from the interface.
- Customize the calculation of Age and Age closed durations of a test result
- Starting with v15.1 of Configuration Compliance, the Age and Age Closed durations of a test result can be configured to be calculated from the date in the Created, Opened, or First Found fields.
- Associating a Qualys Test with its Test Group
- You can associate a Qualys Test with its Test Group by enabling the sn_vulc.add_policy_as_key system property. This helps you to identify the Test Group to which a Test Result belongs to and differentiate Test records
with the same Test id that are associated with different Test Groups.
- Calculate the remediation target date of a remediation task with respect to the Last Opened date
- Starting with v15.1 of Configuration Compliance, you can customize the calculation of the remediation target date of a remediation task to be calculated with respect to the Last Opened date.
- Open the search results in the Vulnerability Manager Workspace or IT Remediation Workspace rather than the Classic UI
- Starting with v24.0.6 of Vulnerability Response, automatically open your search results in the Vulnerability Manager Workspace or IT Remediation Workspace rather than the Classic UI, by adjusting the application scope in the unified navigation bar to Vulnerability Manager Workspace or IT Remediation Workspace respectively. These application scopes are available to you based on your assigned role.
- Vulnerability Manager Workspace access to the sn_vulc.read role
- Starting with v24.0.6 of Vulnerability Response, as a user with the sn_vulc.read role, you can view the test results in the Vulnerability Manager Workspace.
- Navigate to the List page in the Vulnerability Manager Workspace or IT Remediation Workspace by selecting the links from the All menu
- Starting with v24.0.6 of Vulnerability Response, when you enable the 'sn_vul_cmn_ws.navigate_to_workspace' system property, selecting predefined filter links in the Configuration Compliance module from the 'All' menu will automatically open these
links in the List page in the Vulnerability Manager Workspace or IT Remediation Workspace based on your role.
- Hide the record count on the lists in the Vulnerability Manager Workspace and IT Remediation Workspace
- Starting with v24.0.6 of Vulnerability Response, you can hide the record count on the lists in the List page of the Vulnerability Manager Workspace and IT Remediation Workspace by adding the table names to the glide.ui.list.seismic.omit.count system property.
- Enable automatic refresh for the Home page dashboard in the Vulnerability Manager Workspace
- Starting with v24.0.6 of Vulnerability Response, when creating and editing filters on the Configuration Test Results tab on the Home page of the Vulnerability Manager Workspace, you can configure the widgets to refresh automatically. Otherwise, you can manually refresh the widgets by selecting the Refresh button on the Configuration Test Results
tab.
- Re-evaluating remediation properties for all records in the Vulnerability Manager Workspace
- Starting with v24.0.6 of Vulnerability Response, you can evaluate the remediation properties for all the test results from the Configuration Test Results list by selecting the All items in the Record
selection field of the Re-evaluate remediation properties modal in the Vulnerability Manager Workspace.
- Re-evaluate remediation properties for test results in the Vulnerability Manager Workspace
- Select the test results conditionally for reevaluating the following remediation properties in Vulnerability Manager Workspace:
- Assignments
- Remediation tasks
- Remediation target date
- Exceptions (Vulnerability Response v24.0.6)
- Risk score
- Using bulk edit for test results in the Vulnerability Manager Workspace
- Perform the following tasks on multiple test results simultaneously or a remediation task in Vulnerability Manager Workspace:
- Populating additional information for the test results
- The Age, Age closed, Closed date, Active, and Last open date columns have been added in the test results table.
The test results that aren’t in the Closed state are marked as true in the
Active field. The Active field replaces the Result and State fields in the filter conditions of the default-saved filters across
the All menu, Configuration Compliance Overview, Unified, Cybersecurity Executive, and Health dashboards.
- CI compliance and test results compliance on a Test Group in the Vulnerability Manager Workspace
- View the percentage of CI compliance and test results compliance on a Test Group in Vulnerability Manager Workspace.
- Enabling or disabling the test results import for a Qualys test group in the Vulnerability Manager Workspace
- Enable or disable the import of test results for a Qualys test group in Vulnerability Manager Workspace.
- Updating Rollup weights section in the roll up calculators
- Other than the script format, an alternative approach of adding the weights in the Rollup Weights section for the rollup calculators has been introduced.
- Percentage test result compliance in the Discovered Items table
- The percentage of test results compliance of a CI is populated in the % Test Results Compliance column of the Discovered Item. To populate this value in the % Test Results Compliance column, set
calcTRComplianceForCI to true in the Update remediation metrics scheduled job.
- Quick Start Tests for Configuration Compliance
-
After upgrades and deployments of new applications or integrations, run quick start tests to verify that Configuration Compliance works as expected. If you customized Configuration Compliance, copy the quick start tests and configure them for your customizations.
|
Yokohama |
- Identify Wiz Resource Types for import
-
Identify the Resource Types (assets) reported by Wiz in your environment on the Wiz Integration Resource Type configuration page in your ServiceNow AI Platform instance that you want to import.
The Resource Types that you select apply to all the primary Wiz vulnerability and compliance integrations except the Wiz Container Vulnerability Integration.
- Wiz Backfill Integrations
- Retrieve and process data stored on the Wiz Missing Assets [sn_vul_wiz_missing_asset] table for missing assets that were not processed by the primary compliance integrations with specialized Wiz Backfill Integrations.
- Test Results Backfill Integration
- Host Test Results Backfill Integration
- Issues Backfill Integration
The Wiz Backfill Integrations are activated by default.
- Wiz Host Test Result Vulnerability Integration
- Import test results associated with the resource type, VIRTUAL MACHINE with the Wiz Host Test Result Vulnerability Integration. This integration is activated by default.
- Create remediation tasks manually in the Vulnerability Manager Workspace
- With the sn_vulc.admin role, you can create remediation tasks manually by selecting some or all the records in the Configuration Test Results lists in the Vulnerability Manager Workspace. These records are grouped into one or more remediation tasks according to the grouping criteria selected while creating remediation tasks.
- Create remediation tasks manually in the IT Remediation Workspace
- With the sn_vulc.remediation_owner role, you can create remediation tasks manually by selecting desired records in the Configuration Test Results lists in the IT Remediation Workspace. These records are grouped into one or more remediation tasks according to the grouping criteria selected while creating remediation tasks.
- View risk score details of a test result in the Work notes section
- Starting with v15.2.1 of Configuration Compliance, the system property sn_sec_cmn.risk_score_changes_add_worknotes is inactive by default. If you enable it, only then you can see all the changes related to the risk score
of a test result in the Work notes section. Additionally, the work notes are updated only if there’s a change in the risk score.
- Quick Start Tests for Configuration Compliance
-
After upgrades and deployments of new applications or integrations, run quick start tests to verify that Configuration Compliance works as expected. If you customized Configuration Compliance, copy the quick start tests and configure them for your customizations.
|
Changes
Between your current release family and Yokohama, some changes were made to existing Configuration Compliance features.
| Release |
Release notes |
Xanadu |
|
Yokohama |
No updates for this release. |
Removed
Between your current release family and Yokohama, some Configuration Compliance features or functionality were removed.
| Release |
Release notes |
Xanadu |
- The Reason field in the Resolve modal has been removed for a remediation task in the classic UI, Vulnerability Manager Workspace, and IT Remediation Workspace.
- The Close button has been removed for a remediation task, in the classic UI, Vulnerability Manager Workspace, and IT Remediation Workspace.
|
Yokohama |
No updates for this release. |
Deprecations
Between your current release family and Yokohama, some Configuration Compliance features or functionality were deprecated.
| Release |
Release notes |
Xanadu |
No updates for this release. |
Yokohama |
No updates for this release. |
Activation information
Review information on how to activate Configuration Compliance.
| Release |
Release notes |
Xanadu |
No updates for this release. |
Yokohama |
Install Configuration Compliance by requesting it from the ServiceNow Store. Visit the ServiceNow Store website to view all the available apps and for information about submitting requests to the store. For cumulative release notes information for all released apps, see the ServiceNow Store version history release notes.
|
Additional requirements
If any additional requirements were introduced or changed for Configuration Compliance we have noted them here.
| Release |
Release notes |
Xanadu |
No updates for this release. |
Yokohama |
No updates for this release. |
Browser requirements
If any specific browser requirements were introduced or changed for Configuration Compliance we have noted them here.
| Release |
Release notes |
Xanadu |
No updates for this release. |
Yokohama |
No updates for this release. |
Accessibility information
Review details on accessibility information for Configuration Compliance, such as specific requirements or compliance levels.
| Release |
Release notes |
Xanadu |
No updates for this release. |
Yokohama |
No updates for this release. |
Localization information
If there are specific localization considerations for Configuration Compliance we have noted them here.
| Release |
Release notes |
Xanadu |
No updates for this release. |
Yokohama |
No updates for this release. |
Highlight information
If there are specific highlight considerations for Configuration Compliance we have noted them here.
| Release |
Release notes |
Xanadu |
- Reevaluate the risk score, assignments, remediation target date, exceptions, and remediation task for a set of test results in Vulnerability Manager Workspace.
- View the percentage of CI compliance and test results compliance on a Test Group in Vulnerability Manager Workspace.
See Configuration Compliance for more information.
|
Yokohama |
- With the sn_vulc.admin role, create remediation tasks manually in the Vulnerability Manager Workspace.
- With the sn_vulc.remediation_owner role, create remediation tasks manually in the IT Remediation Workspace.
See Configuration Compliance for more information.
|