Create or edit approval levels
Define the levels of users and user groups that are going to approve the exception requests.
Before you begin
Role required: sn_vul_container.vulnerability_admin, sn_vul_cmn.vulnerability_admin, sn_vul.remediation_owner, sn_vulc.remediation_owner, sn_vul_container.remediation_owner
Procedure
- Navigate to Workspaces > Security Exposure Management Workspace > Administration > Approval Rules.
- Select New to create a rule and provide the necessary details.
- Or Select an existing Approval rule from the list view to edit the Approver level.
- In the Approver Levels section, select the approver level to edit.
-
On the form, fill/update the fields as per requirement.
Table 1. New approver level form Field Description Name Approval level name. Required approval Select how many approvals are required for the selected level: - One approver required
- All users must approve
Active Enabled by default, signifying that the approval level is in use. Order Execution order of various configurations within a rule. For example, a configuration with an order entry of 100 runs before a configuration with an order entry of 200. Approval rule Contains the table and type details for the approval rule. Assign using Select an option from: - User and user group
- Approval table field
- Script
Groups Approver level group consisting of multiple users. The user must have one of the following roles: - sn_vul.exception_approver: For exception management and exception rules
- sn_vul.false_positive_approver: For false positive
Users Edit the users listed in the groups. Approver table Select an option from: - Applies to tables
- Vulnerability State Change Approval
Approver table field Select an option from: - Assigned to
- Assignment group
- Closed by
- Deferred by
- Opened by
- Resolved by
- To save the changes, select Update.