ChangeGear - Create Incident
- 18 Sep 2024
- 2 Minutes to read
- Print
- DarkLight
- PDF
ChangeGear - Create Incident
- Updated on 18 Sep 2024
- 2 Minutes to read
- Print
- DarkLight
- PDF
Article summary
Did you find this summary helpful?
Thank you for your feedback
ChangeGear - Create Incident creates a single incident in ChangeGear listing all the affected assets retrieved from the saved query supplied as a trigger (or from the entities selected in the asset table).
See Creating Enforcement Sets to learn more about adding Enforcement Actions to Enforcement Sets.
Note:
- Not all asset categories are supported for all Enforcement Actions.
- See Actions supported for Activity Logs, Adapters Fetch History, and Asset Investigation modules.
- See Actions supported for Vulnerabilities.
- See Actions supported for Software.
General Settings
- Action name - The name of this Enforcement Action. The system sets a default name. You can change the name.
- Configure Dynamic Values - Toggle on to enter a Dynamic Value statement. See Creating Enforcement Action Dynamic Value Statements to learn more about Dynamic Value statement syntax.
- Use stored credentials from the ChangeGear adapter - Select this option to use the first connected ChangeGear adapter credentials.NOTE
- To use this option, you must successfully configure a ChangeGear adapter connection.
- The API key used for the adapter connection must be user with permissions to create new asset.
Required Fields
These fields are necessary to run the Enforcement Action.
- Summary - Add a summary to the incident.
- Impact - Select the impact level from the list.
- Urgency - Select the urgency level from the list.
- Priority - Select the priority level from the list.
- Due in x Days - The incident must be handled within the indicated number of days.
Compute Node - The Axonius node to use when connecting to the specified host. For more details, see Connecting Additional Axonius Nodes.
Additional Fields
These fields are optional.
- Incident Type ID - The ID of the incident type.
- Incident Type - Select the incident type from the list. If Incident Type ID is used, this value is ignored.
Connection and Credentials
When Use stored credentials from the adapter is toggled off, some of the connection fields below are required to create the connection, while other fields are optional.
- Host Name or IP Address - The hostname or IP address of the ChangeGear server.
- User name and Password - To connect to ChangeGear you will need to create a user with action privileges.
- Verify SSL (optional) - Select whether to verify the SSL certificate of the server against the CA database inside of Axonius. For more details, see SSL Trust & CA Settings.
- HTTPS Proxy (optional) - Connect the adapter to a proxy instead of directly connecting it to the domain.
- HTTPS Proxy User Name (optional) - The user name to use when connecting to the server using the HTTPS Proxy.
- HTTPS Proxy Password (optional) - The password to use when connecting to the server using the HTTPS Proxy.
For more details about other Enforcement Actions available, see Action Library.
Was this article helpful?