Integrations and dependencies of the Vulnerability Response Patch Orchestration integration with HCL BigFix

  • Release version: Xanadu
  • Updated August 1, 2024
  • 2 minutes to read
    • Summarize
    Summarized using AI
    This content was generated using new OpenAI-powered functionality. Results are provided on an as is basis and are not guaranteed to be accurate or complete.

    Summary of Integrations and Dependencies of the Vulnerability Response Patch Orchestration Integration with HCL BigFix

    The Vulnerability Response Patch Orchestration integration with HCL BigFix allows ServiceNow customers to manage and deploy patches effectively. To utilize this integration, specific applications and dependencies must be installed, all of which can be found in the ServiceNow® Store.

    Show full answer Show less

    Key Features

    • Required Applications: The integration necessitates several applications, including Vulnerability Response, Vulnerability Solution Management, and Security Support, among others. Each may require separate subscriptions.
    • Integration Functions: The integration features several components, including:
      • BigFix Collection Integration: Scheduled daily to retrieve computers and groups from BigFix.
      • BigFix Fixlet Integration: Retrieves available fixlets from BigFix upon completion of the collection integration.
      • BigFix Device Fixlet Integration: Gathers fixlet information from computers post-fixlet integration.
      • BigFix Actions Integration: Acquires information about scheduled patches by the IT team.
    • Application Tables: The integration contains several tables to manage data related to patches, deployments, and vulnerabilities.

    Key Outcomes

    By implementing this integration, ServiceNow customers can efficiently view patch orchestration data, manage vulnerabilities, and automate patch deployment processes. This results in enhanced security posture and streamlined IT operations, ultimately reducing the risk of vulnerabilities in their systems.

    The following product and dependency applications are required for the Vulnerability Response Patch Orchestration with HCL BigFix Integration. These applications are available in the ServiceNow® Store.

    Available versions of applications and dependencies required for the patch orchestration integration

    To view patch orchestration data and available updates (patches) in the workspaces in Vulnerability Response, the following applications are required. All applications listed are available in the ServiceNow® Store. Some applications require separate subscriptions.

    For more information about version compatibility with the required applications and family releases, refer to the KB0856498 Vulnerability Response Compatibility Matrix and Release Schema Changes article in the HI Knowledge Base.

    Application and release version
    Vulnerability Response
    Vulnerability Solution Management
    Vulnerability Response Patch Orchestration application
    Vulnerability Response Patch Orchestration with HCL BigFix application
    Security Support Common
    Security Support Orchestration
    A supported third-party vulnerability scanner application

    Vulnerability Response Patch Orchestration application tables

    The Vulnerability Response Patch Orchestration application contains the following tables:

    Table Description
    Patch Update [sn_vul_patch_orch_update] Stores information about the patches that are available on distinct instances.
    Device Update [sn_vul_patch_orch_m2m_src_ci_update] Stores data about the deployed patches, along with deployment status, that are on displayed on discovered item records.
    Collection [sn_vul_patch_orch_collection] Stores collection data from distinct instances.
    Device Collection [sn_vul_patch_orch_m2m_src_ci_collection] Stores collections data about discovered items.
    Patch Deployment [sn_vul_patch_orch_deployment] Stores information about deployed patches about Collections and CIs.
    Potential Patch [sn_vul_patch_orch_m2m_vuln_patch] Stores data about patches and vulnerabilities that identify the patches that might be used to resolve a vulnerability.

    Vulnerability Response patch orchestration integrations with HCL BigFix

    The integrations developed by ServiceNow® engineering make up the orchestrated solution deployment with the BigFix product. The following integrations are included with the Vulnerability Response Patch Orchestration Integration with HCL BigFix application that you download from the ServiceNow® Store.

    After you install the integration application on your ServiceNow AI Platform instance, to view these integrations, navigate to Integrations > BigFix Patch Orchestration Integration > Integrations. The Vulnerability Response application processes data on scheduled time intervals imported by these integrations with BigFix endpoints.

    Integration Description
    BigFix Collection Integration
    • This integration is scheduled to run daily and runs first in the chained integration run.
    • Retrieves the computers and computer groups that make up the computer groups (configuration items) from the BigFix application.
    BigFix Fixlet Integration
    • When scheduled, this integration is triggered by the completion of the BigFix Collection Integration. You can also run it on-demand.
    • Retrieves information about all available fixlets (patches) from the BigFix server.
    BigFix Device Fixlet Integration
    • When scheduled, this integration is triggered by the completion of the BigFix Fixlet Integration. You can also run it on-demand.
    • Retrieves information about the fixlets that are currently on computers (assets) from the BigFix server.
    BigFix Actions Integration
    • When scheduled, this integration is triggered by the completion of the BigFix Device Fixlet Integration. You can also run it on-demand.
    • Retrieves information about the patches scheduled by the IT team in the BigFix server.