User interface fundamentals
To access BMC Helix Automation Console by using BMC Helix Portal
Before you begin
Configure TrueSight Server Automation to use BMC Helix Single Sign-On (HSSO). For more information, see Configuring BMC Helix Single Sign-on for BMC Helix Automation Console.
- From a supported browser, enter the customer tenant URL to access the console.
- Enter valid BMC Helix Single Sign-On credentials.
- Click Login to access the BMC Helix Portal.
- Click on the BMC Helix Automation Console tile.
In the Select EndPoint dialog box, select the required endpoint to access BMC Helix Automation Console.
The following endpoints are available to access Automation Console.Helix endpoint
TSNA endpoint TSSA endpoint
The Helix endpoint is not associated with any endpoint manager. It is a SaaS based solution for vulnerability management.
The TSNA endpoint is associated with the TrueSight Network Automation endpoint manager. The TSSA endpoint is associated with the TrueSight Server Automation endpoint manager.
Overview of the Automation Console user interface
The BMC Helix Automation Console offers role-based access to the application. The BMC Helix Automation Console user interface displays the following pages according to the selected endpoint:
TSNA endpoint
Dashboard

The Vulnerability Dashboard provides a holistic view of the vulnerabilities identified on devices by the scanner connectors. The widgets on the dashboard show the following metrics:
- The number of mapped versus unmapped vulnerabilities
- The vulnerability risk distribution by service level agreements
- Remediation stages
- The overall risk distribution
- A 13-week trend graph for the number of open versus resolved vulnerabilities
- Top 10 vulnerabilities
- Top 10 risk owners
Assets
The Managed Assets page displays all available devices.
The Scanned Assets page displays the network devices listed in the imported scan files.
Risks
The vulnerabilities from the scan file appear on the Risks > Vulnerabilities page, which contains information such as the vulnerability name, CVE IDs, severity, status, remediation, and impacted assets against each vulnerability. If you expand a vulnerability, additional details for each asset are displayed.
Operations
The Operations page shows a list of operations, which perform remediation actions for resolving vulnerabilities on the specified assets.
Manage
To manage risks, you start with importing a scan file in BMC Helix Automation Console. The Manage > Import page shows the list of scan files imported in the application. BMC Helix Automation Console support scanning tools such as Nessus, Qualys, and Rapid7.
Configuration
defining Service Level Agreements (SLAs), and adding security groups to determine access to the Automation Console.
Administrators use the Configuration menu to perform configuration activities such as adding and updating connectors,TSSA endpoint
Dashboard
- Patch Dashboard: This dashboard provides graphical information about missing patches on assets in your environment.
The widgets on the dashboard show the following metrics:- Patch compliance
- Patch remediation trend
- Missing patches by stage
- Impacted assets by risk score and Service Level Agreements
- Top 10 missing patches
- Top 10 business services at risk
- Top 10 risk owners
- Vulnerability Dashboard: This dashboard provides information about the vulnerabilities identified on the assets by the scanner connectors.
The widgets on the dashboard show the following metrics:- Mapped and actionable vulnerabilities
- Risk and SLA distribution by assets and vulnerabilities
- Remediation trends
- Top 10 identified vulnerabilities
- Top 10 business services at risk
- Top 10 risk owners
- Compliance Dashboard: This dashboard provides graphical information about missing patches on assets in your environment.
This dashboard displays the following metrics:- Compliance posture (percentage of compliant, non-compliant, and indeterminate assets)
- Non-compliant assets by SLA, stage, and risk score
- Top 10 compliance scan policies
- Top 10 business services or applications with the maximum number of non-compliant assets and evaluations.
Assets
The Managed Assets page displays the list of assets with missing patches.
The Scanned Assets page lists the assets that are generated in the vulnerability scans performed by scanner connectors.
The Discovered Assets page lists the assets discovered by integrating with BMC Discovery.
Risks
The Risks page displays the following metrics:
- The number of missing patches and the impacted assets for each missing patch
- The number of vulnerabilities found by the scanner connectors
- The number of compliance violations on the scanned assets
Operations
The Operations page displays a list of operations, which perform actions to install missing patches or remediate vulnerabilities on assets.
You can also create operation templates with predefined options that you can use to create similar type of operations.
Manage
The Manage Patch Policies page displays a list of patch policies, which scan the assets in your environment to identify missing patches.
The Import page displays a list of imported scan files.
On the Manage page, you can create exceptions for vulnerabilities. You can also create compliance policy scans to scan assets for non-compliant rules.
Configuration
Administrators use the Configuration menu to perform the following configuration activities:
- Adding and updating connectors
- Adding catalogs
- Defining Service Level Agreements (SLAs)
- Adding security groups to determine access to the Automation Console.
Common Automation Console UI elements
Use this section to know more about the common user interface elements.
- Click the help icon
to launch the context-sensitive help topic.
- Click User profile menu >
About to view the product name and version.
- Click User profile menu >
Activity Logs to view details of user activities in the Automation Console.
- Click Sign out to log out of the Automation Console.
To change the security group
The security group you belong to appears in the top-right corner of the Automation Console UI. If you are assigned multiple roles in TrueSight Server Automation, you can change the security group to view the Automation Console according to your role.
- On the top-right corner, click User profile menu and then click Change Security Group.
- Select a group, and click Select.
You can view data according to the selected security group.
To add a new security group, see Working with security groups.
To switch the Endpoint
According to your role, you can switch the endpoint to access the Automation Console.
- On the top-right corner, click User profile menu and then click Switch Endpoint.
- Select an endpoint, and click Select.
You now view data according to the selected endpoint.