Welcome
WebUI User's Guide
Read this guide for an introduction to the WebUI tools, concepts, and terminology.
Get started with IVR
Use the Insights for Vulnerability Remediation (IVR) application to view a list of all the vulnerabilities, remediate vulnerabilities and create customized IVR reports.
IVR document
With the BigFix Insights for Vulnerability Remediation (BFIVR) document you can see the description of the vulnerability, vulnerable devices, and deployment history details. Drill further into vulnerability details by using the links to associated views.
Device Centric view
The Device-Centric View in IVR 4.2 provides a unified device-level dashboard for tracking vulnerabilities, remediation actions, and deployment history.

BigFix Documentation Homepage
BigFix 11 Platform Documentation
Welcome to the BigFix Platform documentation, where you can find information about how to install, maintain, and use BigFix.
Detailed system requirements
The content of this page has moved to the HCL Support site. You will be redirected shortly. If the auto-redirect fails for some reason, use this link: https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0104120.
Platform guides in PDF format
Following is a list of links to the BigFix Platform user guides in PDF format:
Common Criteria Certification
Getting Started
Use this section to become familiar with BigFix infrastructure and key concepts necessary to understand how it works.
HTTPS across BigFix applications
This topic describes how the SSL/HTTPS communication works in BigFix applications and links the tasks on how to configure it.
Installation Guide
Learn the system requirements, licensing and installation instructions, and how to configure and maintain BigFix.
Configuration Guide
Learn how to configure BigFix according to your needs.
Console Operator's Guide
Learn how to work with the BigFix Console.
Asset Discovery User's Guide
Learn how BigFix Asset Discovery works.
Web Reports Guide
Learn how the Web Reports feature extends the power of BigFix.
BigFix Explorer Guide
Learn how the BigFix Explorer feature extends the power of BigFix.
WebUI User's Guide
Read this guide for an introduction to the WebUI tools, concepts, and terminology.
- Welcome
  Welcome to BigFix WebUI. The WebUI delivers a powerful set of functions for BigFix operators. It simplifies BigFix workflows, speeds access to data, and improves flexibility, visibility, and performance.
- Meet the WebUI
  Take a quick tour of the WebUI screens, controls, and workflow.
- Get Started with Devices
  Use the Device screens to view and manage all the devices in your environment as determined by your permission levels. You can find specific devices, access device documents, select devices for deployment, generate and export device reports and do much more.
- Get Started with Patch
  Use the Patch screens to list patches, find specific patches, and view detailed patch information including known issues, vulnerable devices, and deployments.
- Get Started with Patch Policy
  A patch policy is a set of criteria that defines a patch list; that is, a collection of Fixlets that meet the patching criteria of a specific set of endpoints.
- Get started with IVR
  Use the Insights for Vulnerability Remediation (IVR) application to view a list of all the vulnerabilities, remediate vulnerabilities and create customized IVR reports.
  - IVR List
    The BigFix Insights for Vulnerability Remediation (IVR) application in the WebUI provides a quick summary of all vulnerabilities in a data grid format. With the application you can remediate vulnerabilities and create custom IVR reports.
  - IVR document
    With the BigFix Insights for Vulnerability Remediation (BFIVR) document you can see the description of the vulnerability, vulnerable devices, and deployment history details. Drill further into vulnerability details by using the links to associated views.
    - Device Centric view
      The Device-Centric View in IVR 4.2 provides a unified device-level dashboard for tracking vulnerabilities, remediation actions, and deployment history.
    - Universal Vulnerability Ingestion (UVI) – File Import
      The Universal Vulnerability Ingestion (UVI) – File Import feature enables users to import vulnerability reports into the IVR application using Tenable or generic CSV files. The process includes file upload, column mapping, data verification, and integration into the IVR system for analysis and reporting. Users can also manage imported data by deleting or updating reports as needed.
  - Rapid 7 support
    IVR integration with Rapid7 allows BigFix to retrieve vulnerability data, correlate it with devices, and recommend remediation actions based on CVEs. It also provides detailed reports on vulnerability severity and exposure dates, enhancing overall vulnerability management.
  - WebUI IVR Settings
    Check the list of BigFix Insights for Vulnerability Remediation (BFIVR) available settings you can change in a configuration file.
  - Troubleshooting IVR
    In many instances,you can troubleshooting various issues that you might encounter in the IVR app.
  - Release Notes
    The release notes outline features, updates and patches that are included in each version of BigFix Insights for Vulnerability Remediation, including the latest application updates.
- Get Started with Software
  A BigFix software package is the collection of Fixlets used to install software on a device. The package includes the installation files, the Fixlets that install them, and information about the package itself.
- Get Started with Custom Content
  Use the Custom Content pages to view custom content, edit tasks, and view related information, including applicable devices and deployments.
- Get Started with BigFix Query
  Use the BigFix Query feature to retrieve data from endpoints through a dedicated query channel, where the memory available on each Relay minimizes the impact to normal BigFix processing.
- Take Action: The Deploy Sequence
  To deploy means to dispatch content such as applications, modules, updates, and patches to one or more endpoints. For example, by deploying a software, you install the software in the targeted endpoints. BigFix WebUI enables you to configure the content and the target devises to create a deployment and monitor the deployment status. The work flow including all the steps, processes, and activities that are required to create a deployment is collectively called as the Deploy Sequence.
- Get Started with Deployments
  Use the Deployment views to monitor and verify completion of BigFix deployments.
- Get Started with the Content App
  Use the Content App to work with Fixlets, tasks, and baselines on the BigFix sites. Search, filter, and deploy content using standard WebUI tools.
- Get Started with Extensions Management Application
  BigFix Extension Management application provides you the possibility to extend WebUI features beyond what is delivered in the products that you are currently entitled to. You can address specific use cases that are not currently fulfilled by the product by adding ad-hoc extensions to WebUI.
- Modern Client Management and BigFix Mobile
  This section guides you through BigFix Modern Client Management (MCM) and BigFix Mobile to understand the MCM concepts, terminologies, features, and functionality. You can find detailed instructions for managing the complete lifecycle of your MDM managed endpoints here.
- Extending BigFix management capabilities
  BigFix 11 delivers a few significant new functions for enhancing the visibility and management of devices on your network regardless of whether the devices are physical or virtual.
- Support
  For more information about this product, see the following resources:
- Notices
WebUI Administration Guide
Read this guide for information about installing and administering the WebUI.
BigFix UI User's Guide
Read this guide for an introduction to the BigFix UI tools, concepts, and terminology.
BigFix UI Administration Guide
Read this guide for information about installing and administering the BigFix UI
Glossary
This glossary provides terms and definitions for the BigFix software and products.

Device Centric view

The Device-Centric View in IVR 4.2 provides a unified device-level dashboard for tracking vulnerabilities, remediation actions, and deployment history.

The Device-Centric View is available for:

Tenable IO/SC–based vulnerabilities
CSV-based imports

The Device Centric View feature has been introduced to provide the following improvements:

To offer real-time visibility into vulnerabilities for each device
To improve remediation options with advanced filtering and sorting capabilities

Important: To support Device-Centric feature, ensure IVR Retriever 4.2.0 is available.

Device-centric view shows the number of vulnerabilities associated with each device after vulnerabilities are imported into IVR either through File Import or through direct Tenable integration.

Click on a Device ID to display detailed device information, including applicable patches and a list of all vulnerabilities for that device. Remediate button initiates the remediation process for the selected device.

Contents tab provides a list of patches for a device. Remediate action will apply to the selected list.

The Vulnerabilities tab provides a list of vulnerabilities for the selected device.

The Remediate button in the panel will apply to the specific vulnerability for that device.

The right-side Remediation button applies all relevant fixlets to that device.

Deployments tab provides list of deployments for a selected device.

Deployment status is logged and updated in the Deployments history tab. Deployment history shows timestamp, fixlet applied, and remediation status.