Add a false positive approver

  • Release version: Washingtondc
  • Updated February 1, 2024
  • 1 minute to read

    • Only users added to the False Positive Approver group can approve false positives for vulnerable items (VIs) and remediation tasks (VULs). Granting a false positive is a single-level approval process.

    Before you begin

    Persona and granular roles are available to help you manage what users and groups can see and do in the Vulnerability Response application. For an initial assignment of the persona roles in Setup Assistant, see Assign the Vulnerability Response persona roles using Setup Assistant. For more information about managing granular roles, see Manage persona and granular roles for Vulnerability Response.

    Note:

    Starting from Vulnerability Response v15.0, if you are deploying the VR application for the first time, the flow designer for exception management is enabled by default. If you are already using the workflow, you can update to the flow designer. In both cases, you cannot change it back to workflow. To configure approval rules for exception management and false positive, see Configure approval rules for Exception Management.

    Role required: sn_vul.vulnerability_admin

    Procedure

    1. Navigate to All > > User Administration > Groups.
    2. In the Name column, search for False Positive and click the option.
    3. On the Group form, navigate to Group members > New (or Edit).
    4. On the User form, create a record by entering the user details, and click Submit.
      All roles are granted to the user. The selected users are added to the Group Members list. These members can approve requests to mark VIs or remediation tasks as false positive. Once approved, the state of the record is updated to Closed and it is reopened only on the specified date.