ChangeGear - Create Incident
  • 16 Mar 2023
  • 3 Minutes to read
  • Dark
    Light
  • PDF

ChangeGear - Create Incident

  • Dark
    Light
  • PDF

Article Summary

ChangeGear - Create Incident creates a single incident in ChangeGear listing all the affected assets retrieved from the saved query supplied as a trigger (or from the entities selected in the asset table).

See Creating Enforcement Sets to learn more about adding Enforcement Actions to Enforcement Sets.

General Settings

  • Enforcement Set name (required) - The name of the Enforcement Set. A default value is added by Axonius. You can change the name according to your needs.
  • Add description - Click to add a description of the Enforcement Set. It is recommended to describe what the Enforcement Set does.
  • Run action on assets matching following query (required) - Select an asset category and a query. The Enforcement Action will be run on the assets that match the query parameters.
  • Action name (required) - The name of the Main action. A default value is added by Axonius. You can change the name according to your needs.
  • Configure Dynamic Values - Toggle on to enter a Dynamic Value statement. See Creating Enforcement Action Dynamic Value Statements to learn more about Dynamic Value statement syntax.

Connection Settings

Click to view Connection Settings
  1. Use stored credentials from the ChangeGear adapter (required, default: False) - Select this option to use the first connected ChangeGear adapter credentials.
    NOTE
    • To use this option, you must successfully configure a ChangeGear adapter connection.
    • The API key used for the adapter connection must be user with permissions to create new asset.
  2. Host Name or IP Address (optional) - The hostname or IP address of the ChangeGear server.
  3. User name and Password (optional) - To connect to ChangeGear you will need to create a user with action privileges.
    NOTE
    If Use stored credentials from the ChangeGear adapter is disabled, these fields are required.
  4. Verify SSL (required) - Verify the SSL certificate offered by the host supplied in Host Name or IP Address. For more details, see SSL Trust & CA Settings.
    • If enabled, the SSL certificate offered by the host will be verified against the CA database inside of Axonius. If it fails validation, the connection will fail with an error.
    • If disabled, the SSL certificate offered by the host will not be verified against the CA database inside of Axonius.
  5. HTTPS Proxy (optional) - A proxy to use when connecting to the value supplied in Host Name or IP Address.
    • When supplied, Axonius uses the proxy when connecting to the value supplied in Host Name or IP Address.
    • When not supplied, Axonius connects directly to the value supplied in Host Name or IP Address.
  6. HTTPS Proxy User Name (optional) - The user name to use when connecting to the value supplied in Host Name or IP Address via the value supplied in HTTPS Proxy.
    • When supplied, Axonius authenticates with this value when connecting to the value supplied in HTTPS Proxy.
    • When not supplied, Axonius does not perform authentication when connecting to the value supplied in HTTPS Proxy.
  7. HTTPS Proxy Password (optional) - The password to use when connecting to the value supplied in Host Name or IP Address via the value supplied in HTTPS Proxy.
    • When supplied, Axonius authenticates with this value when connecting to the value supplied in HTTPS Proxy.
    • When not supplied, Axonius does not perform authentication when connecting to the value supplied in HTTPS Proxy.

Action Settings

Click to view Action Settings
  1. Summary (required) - Add a summary to the incident.
  2. Incident Type ID (optional) - The ID of the incident type.
  3. Incident Type (optional) - Select the incident type from the list. If Incident Type ID is used, this value is ignored.
  4. Impact (required) - Select the impact level from the list.
  5. Urgency (required) - Select the urgency level from the list.
  6. Priority (required) - Select the priority level from the list.
  7. Due in x Days (required) - The incident must be handled within the indicated number of days.

For more details about other Enforcement Actions available, see Action Library.


Was this article helpful?

Changing your password will log you out immediately. Use the new password to log back in.
First name must have atleast 2 characters. Numbers and special characters are not allowed.
Last name must have atleast 1 characters. Numbers and special characters are not allowed.
Enter a valid email
Enter a valid password
Your profile has been successfully updated.