From the Manage > Tasks page, you can organize vulnerabilities into Automox tasks.
Download a CSV-formatted Vulnerability Report
Follow the instructions in Exporting Vulnerability Scanner Reports to download a CSV-formatted vulnerability report from your third-party vulnerability scanner.
Click Manage to navigate to the System Management landing page and click View Pending. This opens the list of pending tasks.
Uploading a Vulnerability Report to Create Tasks
You can upload a CSV-formatted vulnerability report from a variety of different CSV providers and start adding tasks.
Note: The maximum file size for CSV uploads is 20,000 rows.
- Click Add Task.
- Select the CSV provider format for the report that you want to upload.
Note: The format required for the report is listed in the Expected Format field. Refer to that to ensure that the uploaded file meets the requirements.
- Click Upload File and select the CSV file that was downloaded from the vulnerability scanner.
- If Automox determines the size of the file is acceptable, a confirmation shows that the file is accepted without errors and prompts you to click Next.
- A message then shows that it is processing the CSV. Click Finish.
Syncing the Imported Report
From the Imported Batches tab you can follow the mapping process of the uploaded CSV file.
The mapping process is asynchronous and will take time to discover hostnames and any CVEs that they are impacted by. A sync is complete once it shows as Awaiting Approval. Each CSV file has its own row and when the file completes processing, it is highlighted.
|CSV Name||Name of the CSV file that was uploaded|
|Queued By||Email address of the user who uploaded the file|
|Source||Indicates the CSV provider source|
|Impacted Devices||Number of devices impacted by the task|
Viewing the Processing Results
To create the individual tasks, you can now review the results of the syncing process.
- From the Imported Batches tab, click the CSV file name to open the results page.
- You will see the Tasks Pending Creation tab, which outlines all of the tasks to be created (each one is a separate CVE).
- Before creating any tasks, review the separate tab titled Potential Issues that highlights any issues with the data that Automox has ingested. If there are no issues, this tab is not available.
|Device||Name of the device with potential issues|
|Hostname||Permanent device name|
|Private IP||IP address of the device|
|CVE||Name of the CVE|
(hover over description for more information)
After you have reviewed the issues tab, you can move on to the next step and create tasks.
Creating Tasks From the Results Page
From the Tasks Pending Creation tab, you can either create tasks, reject the batch, or cancel and return to the list of batches.
- To create tasks, click Create Tasks to add tasks to the Tasks page.
- From the Tasks page, click the task name to open the task details page. From here you can run the task, reject the task, or export a detailed CSV. Click Run Now.
When the task is initiated, commands are immediately sent to all impacted devices.
- If reboots are required, the device will be put into a "needs reboot" state after remediation, however, that reboot will not happen automatically.
- We do not support notifications or deferrals for tasks at this time. That is expected for a future release.
- You can export a detailed CSV of all impacted devices with greater detail (Note: This is available for tasks in any status).
The export includes the following:
- Custom Name
- Device ID
- Patch Status
- Error Message
- Private IP
- Public IP
- Time Initiated
- Time Completed
- Patch Completed (identifies the CVE)
- Package Version ID
- At any point you can view a summary page of a task that is in progress. Click the task name from the Tasks page to review real-time, device-level reports. Commands time-out after 24 hours of the device being unreachable, which results in a patch failure. As noted previously, detailed device reports for a given task are available in any status (Pending, In Progress, Executed, Rejected).
- You can reject a task that represents work that will not be done. It will remain in the task list indefinitely with the appropriate status. Tasks that are rejected remain on the Tasks page. If you decide to run that task in the future, you have to re-import the CSV, create the tasks, and run them. This function is primarily to serve the use-case of a CVE or package being obsolete or something that an admin has determined they will not do.