Target Audience | Users submitting an exception request through the URL in the remediation ticket |
What is the Remediation Work Form?
The Remediation Work Form is a Vulcan webpage you can access only through a dedicated URL in the ticket, and it allows you to perform the following actions quickly and easily:
Review all vulnerability instances and their details in a user-friendly and simplified view.
Submit an exception request for part or all of the vulnerability instances.
Accessing the Remediation Work Form
Step 1: Click the link to the Remediation Work Form that is sent as part of the email/ticket summary.
Step 2: If not already logged in, enter your Vulcan credentials to access or log in through SSO.
Note: If you don't have a Vulcan user and there is no SSO set for the Vulcan Platform, contact your admin to grant you access.
Step 3: Review the vulnerability details and associated assets.
Step 4: (Optional) Select the vulnerabilities and assets you wish to include in the exception request and fill in the form.
Filling in the Exception Request Form
Step 1: Review the vulnerability details and associated assets.
Step 2: (Optional) Select the vulnerabilities and assets you wish to include in the exception request and fill in the form. The exception request form has the following fields:
Type: The type of request you would like to open, e.g., "False positive" or "Risk Acknowledged". The available list of exception request types depends on the exception request types created by the admin.
Name: The name of the request.
Justification: The reasons why you are submitting the request.
Files (optional): Attach any justification files to the request.
Expiration: The requested expiration date. When the request expires, the vulnerability status changes to "Vulnerable" or "In Progress" again.
Step 3: After filling in all the required fields, Click Submit.
Editing Exception Request
To edit an exception request:
Click on the unique link in the Vulcan ticket or email you received. This will take you to the Remediation Work Form page.
If you are not logged in, enter your credentials to access the form.
Edit the Exception Request. Select or unselect vulnerabilities and modify fields like Type, Name, Justification, Files, and Expiration.
Click the "Update request" button to save changes.
Note: If the request requires approval, the approval workflow will restart once you click "Update request".
Understanding Statuses
There are three statuses:
In Progress: The vulnerability must be remediated.
Risk Acknowledged: The vulnerability was approved within the exception request.
Archived: The related asset was archived.
FAQ
What is an Exception Request?
The Vulcan Platform allows organizations to apply their risk-acceptance policy on vulnerabilities. The Exception Request flow in Vulcan allows users (you) to create exception requests for vulnerabilities received in remediation tickets.
What happens after I submit an exception request through the Remediation Work Form?
Once you submit an exception request, the approval workflow is triggered and approvers receive your request by email.
What happens if I edit a request after submitting it?
If the request requires approval, the approval workflow will restart once you click "Update request".