Rapid7 InsightVM

Home > Administration > IT Operations Management > ITOM Package Library > Hyper-V

Introduction

The Rapid7 InsightVM package for Hornbill's IT Operations Management (ITOM) contains operations to automate vulnerability management operations within Rapid7 InsightVM deployments.

Related Articles

Target Environment Requirements

Script Execution Machine Requirements

If the script execution policy on the machine executing these operations is set to Restricted, then this will need to be updated to something less restrictive. See the PowerShell Documentation for more information.

KeySafe Configuration

When creating SIS jobs for operations contained within this package, they need to be run on the target machine as a user who has the correct privileges within your environment, and will require an additional KeySafe Key to hold the account credentials to connect to InsightVM.

To configure your Target Machine account authentication in KeySafe:

In the Admin console, navigate to: System > Security > KeySafe;
Click on + then select Username + Password;
Give the KeySafe Key a Title (this is the name/identifier for the target machine account as you will see it when creating an IT Automation Job, or adding an IT Automation node to a Business Process or Runbook);
Optionally add a description;
Populate the Username field with the domain/local account username for the account being used on the target machine;
Populate the Password field with the password for the above account;
Select Create Key to save.

To configure your InsightVM account authentication in KeySafe:

In the Admin console, navigate to: System > Security > KeySafe;
Click on + then select Username + Password;
Give the KeySafe Key a Title (this is the name/identifier for the target machine account as you will see it when creating an IT Automation Job, or adding an IT Automation node to a Business Process or Runbook);
Optionally add a description;
Populate the Username field with the Username of the InsightVM account that ITOM will use to perform the operations;
Populate the Password field with the password for the above account;
Endpoint - this should be populated with the API Endpoint for your Rapid7 InsightVM deployment. For example: https://{your.insightvm.hostname}:3780 where {your.insightvm.hostname} should be replaced by the host domain of the InsightVM server, and 3780 is the default port for making API calls to the server;
Select Create Key to save.

Package Operations

The Rapid7 InsightVM package contains the following operations, than can be used to create ITOM Jobs directly, or included in your Business Processes and/or IT Operations Management Rubooks.

Start Scan

Starts a Scan against a Host on a Site. See the InsightVM operation documentation for more information.

Extra Credentials

This operation requires an extra credential to be provided:

Credential Reference: credential1 Credential Keysafe Key Type: Username + Password

Input Parameters

IgnoreBadCerts (MANDATORY) - When set to true, the IgnoreBadCerts input parameter will allow the operation to function even if the SSL certificate on your InsightVM deployment is self-certified or expired;
SiteID (MANDATORY) - The ID of the Site to initiate the scan against;
EngineID (MANDATORY) - The identifier of the scan engine;
Asset (MANDATORY) - The IP or Name of the Asset to scan;
TemplateID (MANDATORY) - The identifier of the scan template;
Name - The user-driven scan name for the scan;

Output Parameters

errors - Any errors returned by the operation;
outcome - Outcome of the operation. Can be OK or FAIL;
id - The ID of the Scan.