Integrations and dependencies of the Vulnerability Response Patch Orchestration integration with HCL BigFix
Summarize
Summary of Integrations and dependencies of the Vulnerability Response Patch Orchestration integration with HCL BigFix
The Vulnerability Response Patch Orchestration integration with HCL BigFix enables ServiceNow customers to orchestrate patch management by integrating vulnerability response with endpoint patch data from BigFix. This integration supports viewing patch orchestration data and available patches directly within Vulnerability Response workspaces, streamlining the vulnerability remediation process.
Show less
Key Features
- Required Applications: To use this integration, customers need several ServiceNow applications available on the ServiceNow Store, including Vulnerability Response, Vulnerability Solution Management, Vulnerability Response Patch Orchestration (including the HCL BigFix-specific application), Security Support, and Security Support Orchestration. Some applications may require separate subscriptions.
- Version Compatibility: Customers should consult the Vulnerability Response Compatibility Matrix and Release Schema Changes article (KB0856498) in the HI Knowledge Base to ensure compatibility between application versions and ServiceNow releases.
- Patch Orchestration Data Tables: The integration uses specific tables within the Vulnerability Response Patch Orchestration application to store patch, device, collection, deployment, and vulnerability data. These tables facilitate tracking patch availability, deployment status, and their relationship to vulnerabilities and configuration items (CIs).
- BigFix Integration Components: The integration consists of four chained integrations that run on scheduled intervals or on-demand to synchronize data from BigFix:
- BigFix Collection Integration: Runs daily first to retrieve computer groups and computers as configuration items from BigFix.
- BigFix Fixlet Integration: Triggered after the collection integration, retrieves information about all available fixlets (patches) from BigFix.
- BigFix Device Fixlet Integration: Triggered after the fixlet integration, retrieves fixlet information currently applied to computers/assets.
- BigFix Actions Integration: Triggered last, retrieves scheduled patch deployment actions from BigFix.
Key Outcomes
- Customers gain the ability to view and manage patch data from BigFix directly within the ServiceNow Vulnerability Response environment.
- Enhanced visibility into patch availability, deployment status, and their impact on vulnerability remediation enables more efficient and coordinated patch orchestration workflows.
- Integration with BigFix automates data synchronization on scheduled intervals, reducing manual effort and improving data accuracy for vulnerability and patch management processes.
The following product and dependency applications are required for the Vulnerability Response Patch Orchestration with HCL BigFix Integration. These applications are available in the ServiceNow® Store.
Available versions of applications and dependencies required for the patch orchestration integration
To view patch orchestration data and available updates (patches) in the workspaces in Vulnerability Response, the following applications are required. All applications listed are available in the ServiceNow® Store. Some applications require separate subscriptions.
For more information about version compatibility with the required applications and family releases, refer to the KB0856498 Vulnerability Response Compatibility Matrix and Release Schema Changes article in the HI Knowledge Base.
| Application and release version |
|---|
| Vulnerability Response |
| Vulnerability Solution Management |
| Vulnerability Response Patch Orchestration application |
| Vulnerability Response Patch Orchestration with HCL BigFix application |
| Security Support Common |
| Security Support Orchestration |
| A supported third-party vulnerability scanner application |
Vulnerability Response Patch Orchestration application tables
The Vulnerability Response Patch Orchestration application contains the following tables:
| Table | Description |
|---|---|
| Patch Update [sn_vul_patch_orch_update] | Stores information about the patches that are available on distinct instances. |
| Device Update [sn_vul_patch_orch_m2m_src_ci_update] | Stores data about the deployed patches, along with deployment status, that are on displayed on discovered item records. |
| Collection [sn_vul_patch_orch_collection] | Stores collection data from distinct instances. |
| Device Collection [sn_vul_patch_orch_m2m_src_ci_collection] | Stores collections data about discovered items. |
| Patch Deployment [sn_vul_patch_orch_deployment] | Stores information about deployed patches about Collections and CIs. |
| Potential Patch [sn_vul_patch_orch_m2m_vuln_patch] | Stores data about patches and vulnerabilities that identify the patches that might be used to resolve a vulnerability. |
Vulnerability Response patch orchestration integrations with HCL BigFix
The integrations developed by ServiceNow® engineering make up the orchestrated solution deployment with the BigFix product. The following integrations are included with the Vulnerability Response Patch Orchestration Integration with HCL BigFix application that you download from the ServiceNow® Store.
After you install the integration application on your ServiceNow AI Platform instance, to view these integrations, navigate to . The Vulnerability Response application processes data on scheduled time intervals imported by these integrations with BigFix endpoints.
| Integration | Description |
|---|---|
| BigFix Collection Integration |
|
| BigFix Fixlet Integration |
|
| BigFix Device Fixlet Integration |
|
| BigFix Actions Integration |
|