This topic helps you understand the product and features of BMC Helix Automation Console (SaaS) and TrueSight Automation Console (on-premises).
Automation Console is available as a service, called BMC Helix Automation Console (SaaS), and as an on-premises product, called TrueSight Automation Console. They integrate with the endpoint manager, TrueSight Server Automation, to identify, analyze, and remediate missing patches and vulnerabilities.
BMC Helix Automation Console is a service offering on the BMC Helix Platform, and is a part of the BMC Helix Vulnerability Management service.
Organizations spend significant time and effort in monitoring a network of servers to keep track of the patches installed and configured on the servers, also known as assets. With application vendors releasing patches periodically, an organization invests a considerable amount of time in obtaining the released patches, evaluating the impact, identifying gaps, and eventually installing these patches. Most security breaches occur due to known but unpatched vulnerabilities. Typically, a patch administrator analyzes individual servers to determine the patches to be acquired and installed to comply with the organizational policies. This process involves significant time and manual effort.
Using Automation Console, an administrator imports patch catalogs from TrueSight Server Automation. These catalogs store patch metadata released by the vendors. An IT operator creates a patch policy based on a catalog, which runs a patching job in Server Automation. This job scans the assets according to the policy settings and identifies missing patches on assets. Operators can then create an operation to install missing patches, restart the assets, and send notifications after the operation is complete.
The end-to-end patch management process of identifying missing patches and installing them on the assets is done automatically by integrating seamlessly with TrueSight Server Automation. For more information about the TrueSight Server Automation patch management process, see .
Automation Console helps you maintain the integrity of enterprise computing by analyzing and remediating vulnerabilities across your environment. By establishing a connection with the endpoint manager, such as TrueSight Server Automation, Automation Console enables you to remediate vulnerabilities on the endpoints or assets.
Operators first import a vulnerability scan file, which imports asset and vulnerability data in the application. In this release, Automation Console supports importing data from popular vulnerability scanning tools such as Qualys, Rapid7, and Nessus. After a successful import, the application automatically maps assets to endpoints in TrueSight Server Automation, and maps vulnerabilities to remediation content required to resolve the vulnerabilities. The most common types of remediation content are patches, NSH scripts, and packages. Operators can also map assets and vulnerabilities manually.
Using Automation Console, operators then create operations that perform actions on assets to remediate vulnerabilities. In version 20.02, Automation Console integrates with BMC Remedy IT Service Management (ITSM) to create change requests and implement an approval process.
For more information about the process of importing scans, mapping assets and vulnerabilities, and performing remediation operations, see Using.
Automation Console provides role-based access to the application. Users access the Automation Console based on the role assigned to them in TrueSight Server Automation. For details, see User roles and permissions.
This space provides documentation for BMC Helix Automation Console (SaaS) and TrueSight Automation Console (on-premises).
Topics that are applicable for both begin with an introductory statement that mentions both the product names.
Topics that are applicable for either BMC Helix Automation Console (SaaS) or TrueSight Automation Console (on-premises) are indicated by appropriate text.
For example, the Planning section, which is applicable only for TrueSight Automation Console (on-premises) has a note that indicates its relevance.