REST messages for the Vulnerability Response patch orchestration integration with HCL BigFix

  • Release version: Zurich
  • Updated September 5, 2025
  • 2 minutes to read
    • Summarize
    Summarized using AI
    This content was generated using new OpenAI-powered functionality. Results are provided on an as is basis and are not guaranteed to be accurate or complete.

    Summary of REST messages for the Vulnerability Response patch orchestration integration with HCL BigFix

    The Vulnerability Response patch orchestration integration with HCL BigFix leverages REST messages to interact with the BigFix API. These REST messages enable ServiceNow customers to authenticate, retrieve data, and schedule patch deployments directly from the ServiceNow AI Platform® to BigFix, streamlining patch management and vulnerability response processes.

    Show full answer Show less

    Key Features

    • BigFix Login REST Messages: Used for authenticating REST API requests to BigFix. Modifications to the record method affect authentication behavior.
    • Data Retrieval (GET) REST Messages: Allow fetching information such as computers, computer groups, Fixlets, relevant Fixlets on computers, and actions from BigFix based on specified queries. Parameters such as sourceType, sortDIR, sortField, and type define the integration data source, sorting direction and field, and data type. These parameters are typically fixed and not recommended to be altered.
    • Patch Deployment (POST) REST Messages: Enable scheduling of patch deployments on single or multiple computers via BigFix Console. Parameters include dynamic values for the endpoint URL, deployment title, XML-tagged settings and computer lists, as well as the patch update site name and Fixlet ID.

    Key Outcomes

    • Seamless integration with BigFix API for authentication, data retrieval, and patch deployment.
    • Consistent and reliable patch orchestration driven from ServiceNow, leveraging BigFix’s patch management capabilities.
    • Parameter configurations within REST messages ensure precise targeting of assets and patches, minimizing configuration errors and improving automation accuracy.

    The Vulnerability Response patch orchestration integration with HCL BigFix REST messages are used to make calls to the BigFix API.

    BigFix login

    You can also use the REST messages for the BigFix Login so that you can authenticate REST API requests. Changes to the record method of the REST message impact the authentication requests made to BigFix.

    Parameter name Value Description
    sourceType cumulative Indicates the source integration pulls data from. Used by code. Changes are not recommended.
    sortDIR desc Indicates the sort direction for the data pulled from integration. Changes are not recommended.
    sortField severity Indicates the field the data sort is based on. Changes are not recommended.
    type vuln Indicates the type of data to be fetched from integration for the assets integration. Changes are not recommended.

    BigFix integration

    You can use the REST message for the BigFix integration to retrieve information from BigFix. Changes to the record method of the REST message impact the requests made to BigFix to retrieve information. REST messages contain the following REST methods.

    Table 1. REST methods
    REST method Description
    GET Fetch Data Retrieves the information from BigFix regarding one of the following based on the query provided:
    • Computer/Computer Groups
    • Fixlets
    • Relevant Fixlets on computers
    • Actions
    Parameter name Value Description
    url Dynamic values based on user Indicates the endpoint of the BigFix Console

    BigFix deploy patch

    You can use the REST message for the BigFix integration to schedule patches from your ServiceNow AI Platform® to BigFix. Changes to the record method of the REST message impact the requests made to BigFix to retrieve information. REST messages contain the following REST methods.

    REST method Description
    POST Deploy Patch Schedules the patch to BigFix console on single/multiple computers.
    Parameter name Value Description
    url Dynamic values based on user Indicates the endpoint of the BigFix Console.
    title Dynamic values based on user Title of the deployment.
    settings_tag XML tag-named settings with values Indicates settings that have different parameters and are sent to BigFix while scheduling the patch.
    computer_tag XML tag-named computers with values Indicates list of computers on which the patch is going to be scheduled.
    site_name Value from patch update Name of the site where the Fixlet is present.
    fixlet_id Value from patch update Id of the Fixlet.