Rapid7 Insight VM Management

Integrate vulnerability management into IT operations so you can focus on what’s most important to your organization’s security

Package Details

• Vendor: Rapid7
• Target Platform: Windows Universal
• Package Type: Application Management

Why use this

Prioritise resolution of the most dangerous vulnerabilities

Integrate Vulnerability Management and Security Incident and Event Management (SIEM) with IT operations to provide better visibility and faster resolution of high-priority vulnerabilities. Through integration with Rapid7 InsightVM, Hornbill gives IT teams the tools to spot and fix security high priority vulnerabilities faster.

Benefits

• Respond to security incidents faster
• Eliminate business risks
• Report on security incidents within your service desk reports

How to get it

• You can try out ITOM for free (not for production use, limited runs) by installing the ITOM application from the Hornbill App Store.
• If you would like to explore ITOM and consider subscribing, please contact your account manager here.

Requirements

• Install the Hornbill Site Integration Server inside your firewall (if you don’t already have it).
• PowerShell v5.x
• If the script execution policy on the machine executing these operations is set to Restricted, then this will need to be updated to RemoteSigned. See the Microsoft website for more information.

Authentication

When creating jobs for operations contained within this package, they need to be run on the target machine as a user who has the correct privileges within your environment. To create and securely store keys to run the operations:

• In the Configuration area of your Hornbill instance, navigate to Platform Configuration > Security > KeySafe;
• Click on the + Create New Key button, then select Username + Password;
• Give the KeySafe Key a Title (this is the name/identifier for the account as you will see it when creating an IT Automation Job, or adding an IT Automation node to a Workflow);
• Optionally add a Description;
• Populate the Username field with the domain or local machine username for the account being used, for example: DOMAINNAME\yourusername;
• Populate the Password field with the password for the above account;
• Select Create Key to save.

Extra Credentials

Operations in this package require extra credentials to be sent, as well as the credentials for the user running the operation (as above). To create and securely store keys to run the operations:

• In the Configuration area of your Hornbill instance, navigate to Platform Configuration > Security > KeySafe;
• Click on the + Create New Key button, then select Username + Password;
• Give the KeySafe Key a Title (this is the name/identifier for the Rapid7 InsightVM account as you will see it when creating an IT Automation Job, or adding an IT Automation node to a Workflow);
• Optionally add a Description;
• Populate the Username field with the username of a user that has the rights to perform the operations contained within this package;
• Populate the Password field with the password for the above account;
• Populate the API Endpoint field with API Endpoint for your Rapid7 InsightVM deployment. For example: https://{your.insightvm.hostname}:3780 where {your.insightvm.hostname} should be replaced by the hostname/domain of the InsightVM server, and 3780 is the default port for making API calls to the server;
• Select Create Key to save.

Once you have created your KeySafe Keys, you can then use them to populate the **Credentials

Admin or Run As** and Extra Credentials inputs when creating IT Automation Jobs from this package.

See Also

• Nagios XI
• PRTG

Package Automations