VR Configuration and Schedule Import

This section describes how to configure Tenable for VR.

Note: The Tenable for Vulnerability Response application only supports Tenable.sc versions 5.7 and later.

The VR integration configuration allows ServiceNow to poll and retrieve vulnerability data from Tenable.

Note: Tenable VR apps only pull/download queries from Tenable.sc integrations that are using Vulnerability Detail List as the query builder tool. For more information on Tenable.sc queries, see Queries in the Tenable.sc documentation.

Before you begin:

  • In ServiceNow, you must have an account that has the x_tsirm_tio_vr.admin role to complete the setup.
  • Configure the Tenable Connector

    Note: Completely configure and tune Tenable for Assets to match Tenable Assets with ServiceNow CIs. If you do not do this first, issues may occur with VR.

Third-Party Vulnerabilities

To view third-party vulnerabilities:

  • Navigate to Vulnerable Items > Libraries > Third Party.

    Vulnerabilities that include TEN- were imported from Tenable.io or Tenable.sc. Click a vulnerability to view the details.

    Note: The bottom of the page includes vulnerability items and lists of CVE information linked during the import.

Vulnerability Items (Linked Vulnerability and Configuration Items)

To view vulnerability items:

  • Navigate to Vulnerabilities > Vulnerable Items.

    Vulnerabilities that include TEN- were imported from Tenable.io and Tenable.sc. Click a vulnerability to view the details.

    Note: Text boxes are disabled for closed vulnerability items. In the Notes section, you can view information about why the item is closed.