Define a new vulnerability integration

A vulnerability integration is a process that can pull report data from a third-party system, generally to retrieve vulnerability data, and process that reporting data using data sources or a custom processor.

Before you begin

Role required: sn_vul.vulnerability_admin

Procedure

  1. Navigate to Vulnerability > Administration > Integrations.
  2. Click New.
  3. Fill in the fields, as needed.
    Table 1. Vulnerability integration
    Field Description
    Name A descriptive name for the integration.
    Active Whether the integration is currently active. You can set up the parameters you want to use and deactivate the job if you do not want it to run for a specific time period.
    Run The frequency you want the integration to run, Daily, Weekly, Periodically, etc. As noted below, subsequent fields are displayed or not based on your setting in this field.
    Day The day you want the integration to run.
    • If you selected Weekly in the Run field, this field displays the days of the week.
    • If you selected Monthly in the Run field, this field displays the days of the month.
    Time The time you want the integration to start.
    Application ]Read only] The name of the application for which this integration was created.
    Repeat Interval If you selected Periodically in the Run field, this field displays the number of days and hours before the integration runs again.
    Starting If you selected Periodically in the Run field, this field displays the dates and time to be used as the starting point for periodic updates.
    Conditional Select this if you want to add conditional parameters.
    Condition If you selected the Conditional check box, enter the conditions here.
    Integration Details
    Integration script Select the script include for managing the integration's logic flow. You can also click the magnifying glass icon, click New, and define your own script include.
    Integration factory script Enter a script that defines how to construct the script include selected for the Integration script.
    Report processor strategy Select the strategy you want to use to handle the data returned by the integration script when the integration runs.
    • Select Data Source Attachment if you want to process data using a data source.
    • Select Custom Report Processor to select a custom processor.
    Report processor If you selected Custom Report Processor in the Report processor strategy field, select the script include that extends the VulnerabilityReportProcessorBase script include to be executed when the integration runs.
    Processor factory script Enter a script that defines how to construct the script include selected for the Report processor.
  4. Click Submit.