Integration run status chart for the Tenable Vulnerability Integration

  • Release version: Xanadu
  • Updated August 1, 2024
  • 2 minutes to read
    • Summarize
    Summarized using AI
    This content was generated using new OpenAI-powered functionality. Results are provided on an as is basis and are not guaranteed to be accurate or complete.

    Summary of Integration run status chart for the Tenable Vulnerability Integration

    The Tenable Integration Run Status module in ServiceNow provides a graphical and interactive view of the status of Tenable integration runs within the Vulnerability Response application. It enables Vulnerability admins to monitor integration performance by visualizing run outcomes, new and updated vulnerable items, and duplicate imports over the last 30 days. This dashboard is accessible in the New Experience UI from version 19.0 onward.

    Show full answer Show less

    Key Features

    • Graphical Status Overview: The chart displays completed integration runs as bars, indicating success or failure. Hovering over elements shows summary data, and clicking reveals detailed lists.
    • Run Metrics: Displays counts of new, updated, and unchanged vulnerable items imported in the last 30 days, helping track integration impact.
    • Integration Run Records: Provides a detailed list of all integration runs for audit and troubleshooting.
    • Role and Access Control: Requires Vulnerability admin role, with granular persona and role management available to control user permissions.
    • Token Management: If a Tenable.sc integration run fails, the authentication token automatically expires and a notification is shown. A new token is generated automatically for subsequent runs, ensuring seamless integration continuity.

    Practical Use for ServiceNow Customers

    Customers can use this module to effectively monitor and analyze the health and outcomes of their Tenable vulnerability data integrations. The interactive charts and detailed lists facilitate quick identification of integration issues, such as failed runs or token expirations, enabling timely remediation. Role-based access controls ensure appropriate visibility and management capabilities across teams.

    To access the dashboard, navigate to All > Tenable Vulnerability Integration > Integration Run Status. For managing roles and permissions, customers should refer to the Setup Assistant and the granular role management guides within Vulnerability Response.

    The Tenable Integration Run Status module provides you with a graphical view of the status of Tenable integration runs.

    In the chart, point to any part of the graph to display a summary of data specific to that part. If you click any part on the bar graph, a list opens to provide more detailed information.

    Role required: Vulnerability admin.

    Persona and granular roles are available to help you manage what users can do and see in the Vulnerability Response application. For initial assignment of the persona roles in Setup Assistant, see Assign the Vulnerability Response persona roles using Setup Assistant.

    For more information about managing granular roles, see Manage persona and granular roles for Vulnerability Response.

    To view the data, navigate to All > Tenable Vulnerability Integration > Integration Run Status.

    Starting with version 19.0 of Vulnerability Response, this dashboard is available in the New Experience UI.
    Note:
    If you are on Tokyo, you can view the dashboards in the Next Experience UI but with some functional loss.
    Figure 1. Run status
    Tenable Vulnerability Integration run chart

    Tenable integration run status chart reports

    Name Description
    Last 30 days Tenable Results The number of integration runs completed for each integration. Shows both successful and failed runs. Each run displayed as a bar in the graph.
    Last 30 Days Tenable New VIs The number of new vulnerable items imported in the last 30 days. Shown as an integer.
    Last 30 Days Tenable Updated VIs The number of updated vulnerable items imported in the last 30 days. Shown as an integer.
    Last 30 Days Tenable Unchanged VIs The number of duplicate vulnerable items imported in the last 30 days. Shown as an integer.
    Tenable Integration Runs The integration run records in a list.
    Note:
    V16.1: To verify detections for this integration, compare the detections or findings with the ServiceNow detection data in the sn_vul_detection table.

    While the integration is in progress, there might be a change in the detection or findings count. This report displays the count of detections in the ‘Till date count’ column in the instance, after the completion of the integration run.

    Token validation expiration

    If a Tenable.sc integration run fails for any reason, the authentication token for Tenable.sc automatically expires and a message is displayed on the Vulnerability Integration Process record.

    Figure 2. Expired token message
    Notes on VR integration run record for Tenable.sc

    A new token is automatically generated for the next integration process. All the integration processes, failed and successful, are displayed on the Vulnerability Integration Process tab on the Vulnerability Integration Process record.