Home
Implementation Guides
This guides allow you quickly and easily find the information you need to deploy, set up and configure the solution.
BigFix Insights for Vulnerability Remediation
Welcome to the BigFix Insights for Vulnerability Remediation (IVR) documentation, where you can find information about how to install, maintain and use IVR service.
Reference
The following topics contain information on how you can work with the configuration file and settings, the CLI that comes with the package. They also describe how to use the log files for troubleshooting purposes.
Known limitations
Refer to the below list of limitations in BigFix Insights for Vulnerability Remediation.

Implementation Guides
This guides allow you quickly and easily find the information you need to deploy, set up and configure the solution.
- ServiceNow Data Flow
  This module provides an overview and features of BigFix ServiceNow Data Flow.
- BigFix Insights for Vulnerability Remediation
  Welcome to the BigFix Insights for Vulnerability Remediation (IVR) documentation, where you can find information about how to install, maintain and use IVR service.
  - BigFix Insights for Vulnerability Remediation
    Use this section to become familiar with BigFix Insights for Vulnerability Remediation infrastructure and key concepts necessary to understand how it works.
  - System requirements
    Learn more about the prerequisites and system requirements for BigFix Insights for Vulnerability Remediation (IVR) service.
  - Deployment and configuration
    This module provides the steps to deploy and configure the BigFix Insights for Vulnerability Remediation solution for:
  - Setting up IVR App
    Use this module to install and set up your WebUI IVR app.
  - Scheduling IVR ETL
    The Extract, Transform, Load (ETL) process pulls data from a datasource and stores it in the IVR database. An ETL process consumes significant time and resources and hence must be performed on a customized schedule to minimize disruption. In IVR, you can schedule an ETL daily, weekly, or monthly.
  - IVR Fixlets and Tasks
    Learn more about available Fixlets and Tasks for BigFix Insights for Vulnerability Remediation.
  - Updating and validating the IVR configuration file
    You can update and validate the IVR configuration.
  - Updating IVR credentials
    You can update the IVR credentials.
  - Business Intelligence reports
    Use this section to become familiar with Power BI and Tableau reports.
  - Reference
    The following topics contain information on how you can work with the configuration file and settings, the CLI that comes with the package. They also describe how to use the log files for troubleshooting purposes.
    - Configuration file
      Data Flow service uses DataflowsConfig.xml configuration file. The file is located in the default installation path: C:\Program Files (x86)\BigFix Enterprise\Dataflow. The file contains three sections: Data Sources, Data Flows, and Settings. All tags and attribute names in the file must be in lower case. There is also an DataFlowsConfig.xsd file that you can use to validate the configuration file on startup.
    - Configuration settings for IVR solution
      List of available settings you may change in a configuration file.
    - Command line interface
      The BigFix Insights for Vulnerability Remediation service executable (BFIVR.exe) provides a Command Line Interface (CLI) that we can use to perform several distinct functions related to the setup and execution of the solution. This includes installing, uninstalling, starting, and stopping the solution as a native system service. This allows us to securely provide credentials for data sources and validate configuration before starting the service from the BigFix console.
    - Logs
      You can find log files in the logs folder in the installation path. Logs are updated every day. Configure the solution with INFO as the log level unless you intend to troubleshoot an issue.
    - Troubleshooting
      This topic helps you in troubleshooting various issues encountered in IVR (BigFix Insights for Vulnerability Remediation) service.
    - Known limitations
      Refer to the below list of limitations in BigFix Insights for Vulnerability Remediation.
  - Release Notes
    The release notes outline the features, updates and patches that are included in each version of BigFix Insights for Vulnerability Remediation, including the latest application updates.

Known limitations

Refer to the below list of limitations in BigFix Insights for Vulnerability Remediation.

Warning: Do not use more than 1 dataflow per BigFix Insights for Vulnerability Remediation service.

Warning: Do not deploy BigFix Insights for Vulnerability Remediation service to more than 1 machine.

IVR( BigFix Insights for Vulnerability Remediation)1.1 currently officially supports BigFix Insights instances with only one BigFix Datasource.
IVR Tenable.sc: Allow Session Management must be disabled. For more information, refer to the Tenable.sc configuration settings.
Currently we do not support multi-instance data flow service even for the same datasource type.
PowerBI and Tableau reports: The maximum number of records which can be exported to CSV file:
- 50k records for Tableau
- 30k records for PowerBI
Power BI: The sorting of severities in the breakdown vizualizations may yield unpredictable results.
- Sort order of the bars come up differently in an unpredictable order, but does not affect the functionality of the data.
IVR Tenable.io: Findings in the IVR.findings table whose asset has been deleted on Tenable.io are not removed until the finding/vulnerabilities themselves are updated on Tenable.io.
To run Asset Exchange and Tenable.io, the service should be stopped and restarted in between an Asset Exchange dataflow and Tenable.io dataflow.
Tenable.io: IP Addresses Multiplicity - If a property result set for a given device/asset contains more than one IPv4 address, this device/asset is not correlated. Currently not supported.
IVR Insights: Deleted custom fixlets remain in the IVR.vulnerability_fixlet_nexus table.
The drill-through filter to the Vulnerability List from the Overview dashboard for the Date Detected/Published visualization may not work correctly.