3.0 enhancements

This section contains overview of the enhancements in version 3.0 of the TrueSight Vulnerability Management product.

Product delivery using Docker containers

TrueSight Vulnerability Management 3.0 is delivered as a set of Docker containers, which you can easily deploy and manage by using the built-in Stack Manager tool that requires no prior expertise on Docker. For installation instructions, see Installing.

Remediation support using SCCM connector

TrueSight Vulnerability Management now integrates with Microsoft System Center Configuration Manager (SCCM) using the SCCM connector. This integration allows mapping of vulnerabilities to the remediation content in SCCM, such as Software Updates, Applications, and Application Packages, as well as execute remediation operations via SCCM on target hosts. For a sample walkthrough, see Walkthrough: Using SCCM to remediate server issues detected in a vulnerability scan.

Data enrichment through asset tagging

With this release, you can tag assets in bulk by importing a CSV file that enables fetching data from multiple sources, such as CMDB and BMC Discovery. This enhanced metadata (tags) in assets can then be used to filter data on dashboards and choose the logical set of vulnerabilities for remediation. Asset tagging enables users to create views and remediate vulnerabilities by service, asset owners, asset usage, and so on. For more information, see Managing tags.

Enhanced auto-mapping of vulnerabilities

Now, a vulnerability is auto-mapped accurately if a vulnerability with a CVE ID can be mapped to multiple patch catalogs and these catalogs are of the same operating system (for example, one catalog for each version of the OS). This functionality allows you to define preferred catalogs per OS version. For more information, see Creating the ini file.

Was this page helpful? Yes No Submitting... Thank you