This section contains overview of the enhancements in version 3.0 of the TrueSight Vulnerability Management product.
Product delivery using Docker containers
Remediation support using SCCM connector
TrueSight Vulnerability Management now integrates with Microsoft System Center Configuration Manager (SCCM) using the SCCM connector. This integration allows mapping of vulnerabilities to the remediation content in SCCM, such as Software Updates, Applications, and Application Packages, as well as execute remediation operations via SCCM on target hosts. For a sample walkthrough, see Walkthrough: Using SCCM to remediate server issues detected in a vulnerability scan.
Data enrichment through asset tagging
With this release, you can tag assets in bulk by importing a CSV file that enables fetching data from multiple sources, such as CMDB and BMC Discovery. This enhanced metadata (tags) in assets can then be used to filter data on dashboards and choose the logical set of vulnerabilities for remediation. Asset tagging enables users to create views and remediate vulnerabilities by service, asset owners, asset usage, and so on. For more information, see Managing tags.
Enhanced auto-mapping of vulnerabilities
Now, a vulnerability is auto-mapped accurately if a vulnerability with a CVE ID can be mapped to multiple patch catalogs and these catalogs are of the same operating system (for example, one catalog for each version of the OS). This functionality allows you to define preferred catalogs per OS version. For more information, see Creating the ini file.