Request an extension for a deferred vulnerable item before it reaches its deferred until due date. As a remediation owner, you’re no longer required to wait until the deferred due date to make this request.

Before you begin

Role required: sn_vul.vulnerability_admin or sn_vul.admin (deprecated)

About this task

You can also request an extension from the classic environment.

Use the same procedure to request an extension for an application vulnerable item, container vulnerable item, test result group, and a remediation task.

Procedure

  1. Navigate to Workspaces > Vulnerability Manager Workspaces.
  2. Select Lists.
  3. Under Host Vulnerable Items, select All.
  4. Filter the list by selecting deferred in the State column.
  5. Select a deferred vulnerable item.
    Note: The Request Extension button is visible only when the state of the vulnerable item is Deferred.
  6. Select the Request Extension button.
  7. Fill in the fields on the form, as appropriate.
    Field Description
    Extend Until

    Select the date until when the deferred vulnerable item must be extended for remediation.
    Reason Enter the reason for deferring the issue.
    Choices include:
    • Awaiting maintenance window
    • Fix unavailable
    • Risk accepted
    • Mitigating control in place
    • Other
    Additional information Enter any other relevant information.
  8. Select Request Extension.
    An email is triggered on submission of the request and subsequent action by the approver.
    Note:
    • The request goes through two levels of approval.
    • If a deferred vulnerable item is extended again, the extend deferral count increases in the backend.
  9. After the request is approved, the Until, Reason, and Deferral notes are updated.