24.3 enhancements and patches
24.3
Filter and manage vulnerabilities based on vulnerability instance status
Manage scanned vulnerabilities based on their vulnerability status. This column categorizes vulnerabilities into statuses such as Affected, Not Affected, Under Investigation, and Fixed, which helps a security analyst to:
- Prioritize remediation actions
- Update the status of vulnerability instances for effective tracking of vulnerabilities
Also, use the Vulnerability Instances Status option available in the Advanced filter to filter vulnerabilities based on their status.
These vulnerability instance statuses help a security analyst to prioritize remediation actions on vulnerabilities in a timely manner, be more compliant and maintain control over vulnerabilities effectively.
For more information, see Navigating the Vulnerabilities page.
Schedule and run compliance scan policies imported from TrueSight Server Automation
Use the Import Compliance Scan Policy option available on the Create Compliance Scan Policies page under Manage > Compliance Scan Policies to import a compliance scan job from TrueSight Server Automation and to schedule and run a compliance scan policy.
This option helps a security analyst to import a particular compliance scan job from TrueSight Server Automation and manage it from BMC Helix Automation Console, thereby avoiding the need to login to TrueSight Server Automation, which otherwise requires an Administrator role.
For more information, see To run compliance scan policies imported from TrueSight Server Automation.
Import TrueSight Server Automation asset properties as Managed Asset Tags in TrueSight Automation Console
Specify the Truesight Server Automation asset properties that you want to import in the TSSA Properties field, while you are configuring the Truesight Server Automation connector in Automation Console. Upon successful connector sync operation, Automation Console loads all the specified Truesight Server Automation properties as Managed Asset Tags along with the asset metadata.
Also, using the Managed Asset Tag filter in Advanced filters in the Patch dashboard and Managed Assets page, you can filter the imported Server Automation asset data based on their properties. Then, use that data to generate a customized report to share with the respective stakeholders in the organization to perform remediation actions.
For more information, see To import Server Automation asset properties as Managed Asset Tags into BMC Helix Automation Console.
What else changed in this release:
Update | Product behavior in versions earlier than 24.3 | Product behavior in version 24.3 |
|---|---|---|
Support of Oracle Linux - Public Repo Patch Catalog | Sync operation failed when you executed a patch operation using the Oracle Enterprise Linux catalog. | User can now import Oracle Linux - Public Repo Patch Catalog and proceed with the patch policy creation and run operations on patches. |
Updates to the columns displayed on the Vulnerabilities page | The Vulnerabilities page displays the following additional information for each unique vulnerability imported from the configured connectors such as Tenable.sc, Rapid7, or Qualys:
| The Vulnerabilities page displays the following additional information for each unique vulnerability:
This information is available for the vulnerabilities imported from internal scans as well as from the configured connectors. These new columns are also included when you export the vulnerability report. For more information, see the following topics: |
Ability to retain selected Advanced filters | You cannot retain selected Advanced filters. | Selected Advanced filters are retained in the following scenarios:
The selected Advanced filters are not retained in the following scenarios:
For more information, see the following topics: |