Vulnerability Management (InsightVM) Cloud and Console Plugins
Copy link

Automation (InsightConnect) integrates with two Vulnerability Management (InsightVM) interfaces: the Insight Cloud and the Security Console. The Vulnerability Management (InsightVM) Cloud Plugin uses the Vulnerability Management (InsightVM) Cloud API and the Vulnerability Management (InsightVM) Integrations API, where the Vulnerability Management (InsightVM) Console Plugin uses the Vulnerability Management (InsightVM) v3 API.

The Vulnerability Management (InsightVM) Cloud Plugin generally supports:

Jump to Vulnerability Management (InsightVM) Cloud plugin connection configuration.

The Vulnerability Management (InsightVM) Console Plugin supports most all functionality available on the security console, including:

  • Site configuration, site management, site-based scanning, and scan data retrieval
  • Asset search, asset tag management, asset group management, and asset vulnerability and remediation data retrieval
  • Vulnerability exception management

Jump to Vulnerability Management (InsightVM) Console plugin connection configuration.

ℹ️

Complete list of Vulnerability Management (InsightVM) Plugin Actions

To see all available actions with the Vulnerability Management (InsightVM) plugins, see the Actions and Triggers in the Documentation tab of the Extension Library listings for the Vulnerability Management (InsightVM) Cloud and Vulnerability Management (InsightVM) Console plugins.

Vulnerability Management (InsightVM) Cloud Plugin Connection Configuration
Copy link

The Vulnerability Management (InsightVM) Cloud plugin requires:

To create an Vulnerability Management (InsightVM) Cloud Plugin connection:

  • From Automation (InsightConnect)‘s home page, navigate to Settings > Plugins & Tools > Connections, click Add Connection, and select the Rapid7 Vulnerability Management (InsightVM) Cloud plugin from the Plugins list
  • From the workflow builder, add an action step, select the plugin, select an action, and click Add a New Connection in the Choose a Connection step
  • From the workflow import wizard, click Add a New Connection in the Configure Details step for the plugin

Once you’ve reached the connection configuration screen:

  1. Name the connection
  2. Select where the plugin should run, and ensure that it can communicate with the Vulnerability Management (InsightVM) Cloud API (https://{region}.api.insight.rapid7.com/vm/{version}/)
  3. Create a new credential, name the credential, and enter your Insight User API Key (alternatively, select an existing credential)
  4. Select your region (in most cases, your Vulnerability Management (InsightVM) region will match your Automation (InsightConnect) region and can be checked in your browser URL)
  5. Click Save and check your connection to confirm it succeeds

Vulnerability Management (InsightVM) Console Plugin Connection Configuration
Copy link

The Vulnerability Management (InsightVM) Console plugin requires:

  • The username and password for an Vulnerability Management (InsightVM) console account
  • The URL of your Vulnerability Management (InsightVM) Console (e.g., https://consoleserver.acme.com:3780)
ℹ️

User Account Privileges and Logging

Remember your Automation (InsightConnect) connection to Vulnerability Management (InsightVM) will inherit all privileges of the Vulnerability Management (InsightVM) Console user account configured in the connection. Use of the least privilege model is recommended. All actions taken by this account will be logged according to your logging configuration in InsightVM.

To create an Vulnerability Management (InsightVM) Console Plugin connection:

  • From Automation (InsightConnect)‘s home page, navigate to Settings > Plugins & Tools > Connections, click Add Connection, and select the Rapid7 Vulnerability Management (InsightVM) Console plugin from the Plugins list
  • From the workflow builder, add an action step, select the plugin, select an action, and click Add a New Connection in the Choose a Connection step
  • From the workflow import wizard, click Add a New Connection in the Configure Details step for the plugin

Once you’ve reached the connection configuration screen:

  1. Name the connection
  2. Select where the plugin should run. Be sure it can communicate with the Vulnerability Management (InsightVM) Console
  3. Create a new credential, name the credential, and enter your Vulnerability Management (InsightVM) account username and password (alternatively, select an existing credential)
  4. Enter your Vulnerability Management (InsightVM) console URL (eg, https://consoleserver.acme.com:3780)
  5. Click Save and check your connection to confirm it succeeds

Troubleshooting
Copy link

The most common issue with Vulnerability Management (InsightVM) Console connections is connectivity between the Orchestrator and the Vulnerability Management (InsightVM) Console. Check your connection test for a network timeout error (eg, Connectivity test to Vulnerability Management (InsightVM) Console failed: No response received). This may indicate network connectivity issues between your Automation (InsightConnect) Orchestrator and Vulnerability Management (InsightVM) Console. Work with a network administrator to establish connectivity.