Red Hat Solution Integration

  • Release version: Zurich
  • Updated July 31, 2025
  • 3 minutes to read
    • Summarize
    Summarized using AI
    This content was generated using new OpenAI-powered functionality. Results are provided on an as is basis and are not guaranteed to be accurate or complete.

    Summary of Red Hat Solution Integration

    Red Hat Solution Integration is part of the Vulnerability Solution Management feature within the Vulnerability Response application, available through a separate subscription. It enables ServiceNow customers to review and implement remediation solutions for security vulnerabilities affecting Red Hat products and services. This integration helps manage security risks by importing remediation data directly from Red Hat into your ServiceNow instance.

    Show full answer Show less

    Starting with Vulnerability Response version 21.0, Red Hat transmits vulnerability payloads using the Common Security Advisory Framework (CSAF) format, replacing the previous Common Vulnerability Reporting Framework (CVRF) format. A dedicated CSAF parser is included to interpret this XML-based format and populate relevant tables within the system.

    Key Features

    • Automated Synchronization: A scheduled job, which can also be run manually, keeps your ServiceNow instance synchronized with Red Hat’s vulnerability management data and other integrated systems, streamlining the vulnerability remediation lifecycle.
    • Payload Format Support: Supports both CSAF and CVRF payload formats with configurable integration scripts, ensuring compatibility with Red Hat’s evolving data standards.
    • Preconfigured Run-As User: The integration runs under a dedicated user account (default: VR.System) for security and operational consistency. Customers are advised not to change this setting.
    • Role Management: The integration requires the snvul.configurerhsaintegration role. Persona and granular roles within Vulnerability Response allow tailored access control for managing and viewing Red Hat solutions.
    • Solution and Vulnerability Mapping: Retrieves remediation solutions and National Vulnerability Database (NVD) mappings, associating these with vulnerabilities, vulnerable items, and remediation tasks.

    Practical Application for ServiceNow Customers

    Once configured, ServiceNow customers can view and manage Red Hat remediation solutions directly within Vulnerability Response. This integration enables efficient vulnerability risk mitigation by providing accurate, up-to-date remediation information aligned with Red Hat advisories.

    Customers should ensure they have the latest versions of Vulnerability Response and Vulnerability Solution Management to access the most current solution integrations. Installation and configuration guidance is available through Setup Assistant, which also helps assign appropriate roles and personas for managing access and responsibilities.

    Next Steps

    • Verify your Vulnerability Response and Vulnerability Solution Management versions for compatibility.
    • Configure the Red Hat Solution Integration using the provided integration scripts, selecting the appropriate payload format (CSAF recommended).
    • Assign roles such as snvul.configurerhsaintegration to users managing the integration.
    • Monitor and run the scheduled synchronization job to keep remediation data current.

    You can review and implement proposed remediation solutions provided by the Red Hat Solution Integration in the Vulnerability Response application.

    Red Hat Solution Integration is included in the Vulnerability Solution Management feature of Vulnerability Response, available by separate subscription. See Vulnerability Solution Management for more information on how Vulnerability Response incorporates solutions.

    Red Hat Solution Integration investigates reports of security vulnerabilities affecting Red Hat products and services, and provides solution information to help manage security risks. Solutions known as remediations are imported into your Red Hat Solution Integration from Red Hat.

    Starting from version 21.0 of Vulnerability Response, Red Hat transmits payloads in the Common Security Advisory Framework (CSAF) format rather than the Common Vulnerability Reporting Framework (CVRF) format. CSAF, an XML-based standard, differs in both structure and format from CVRF. To accommodate this change, a new CSAF parser has been developed. This parser interprets the CSAF format, extracting the required fields to populate the tables accordingly.
    Note:
    By default, you will receive the payload in the CSAF format.
    The following extracts show the integration script for parsing the payload received from Red Hat in the CSAF and CVRF formats respectively. 
    /** « This function serves to construct the integration script.

*	The integration process record (integrationProcessGr) is provided in the event

*	The function should return the newly constructed script. */
(function(integrationProcessGr){

// Add any logic here to construct your integration script as necessary.

// Pass true if CSAF payload is expected. Pass false if CVRF payload is expected
return new sn_vul.RedHatSolutionIntegration(true);
})(integrationProcessGr);

    /** « This function serves to construct the integration script.

*	The integration process record (integrationProcessGr) is provided in the event

*	The function should return the newly constructed script. */
(function(integrationProcessGr){

// Add any logic here to construct your integration script as necessary.

// Pass true if CSAF payload is expected. Pass false if CVRF payload is expected
return new sn_vul.RedHatSolutionIntegration(false);
})(integrationProcessGr);

    Red Hat Solution Integration contains entry points to the Red Hat product, invoked as a scheduled job. The scheduled job simplifies the vulnerability remediation life cycle by keeping the instance synchronized with other vulnerability management systems. It runs automatically. You can also execute the scheduled job manually.

    There is a configured run-as user for each integration record. The default value for this user is VR.System. Do not change this value.

    Available versions

    For the most current version of Vulnerability Solution Management and Red Hat solutions, verify you have the most current version of Vulnerability Response installed.

    For more information about installing and configuring Vulnerability Solution Management and solution integrations, see Install the Solution Management for Vulnerability Response application and Configure installed solution integrations for Vulnerability Solution Management using Setup Assistant.

    Release version of Vulnerability Response Version of Vulnerability Solution Management Release Notes

    Vulnerability Response v15.0

    		 v10.3

    For compatibility information, see KB0856498 Vulnerability Response Compatibility Matrix and Release Schema Changes

    Roles

    Red Hat Solution Integration tasks involve the following role: sn_vul.configure_rhsa_integration

    Persona and granular roles are available to help you manage what users and groups can see and do in the Vulnerability Response application. For an initial assignment of the persona roles in Setup Assistant, see Assign the Vulnerability Response persona roles using Setup Assistant. For more information about managing granular roles, see Manage persona and granular roles for Vulnerability Response.

    Red Hat Solution Integration

    To view the Red Hat Solution Integration, navigate to Vulnerability Response > Administration > Integrations.

    The following integration is included in the base system.

    Table 1. Red Hat integration
    Integration Description
    Red Hat Solution Integration

    Retrieves solutions and National Vulnerability Database (NVD) mapping to associate solutions with vulnerabilities, vulnerable items, and remediation tasks.

    Solutions

    To view imported solutions in a list, see View a solution.