Welcome
BigFix SaaS User Guide
This guide is for the regular users of BigFix SaaS.
Vulnerability Manager
The Vulnerability provides a real-time overview of an organization's security vulnerabilities, categorized by severity and supporting both CVSS and VPR scoring systems. It includes features for configuring data sources, viewing vulnerability data through charts, and a detailed table for reviewing and managing individual vulnerabilities. Users can also remediate vulnerabilities directly from the dashboard and export data in various formats for further analysis.
Creating new datasource
This module explains how to add a new data source to the Vulnerability Manager.

Introduction
BigFix SaaS is an endpoint management platform that automates patch management and inventory across various operating systems and apps. Benefits include cost savings, accessibility, scalability, automatic updates, quick deployment, reliability, high compatibility, SaaS security, and reduced hardware requirements.
Getting Started with BigFix SaaS
This guide helps you get started with BigFix SaaS solution for managing your endpoints. BigFix SaaS is designed to simplify and streamline the management of users, devices, and deployments within your organization.
BigFix SaaS User Guide
This guide is for the regular users of BigFix SaaS.
- My Dashboard
  My Dashboard is the main page where users can add devices to their deployment and access additional functionality through icons for notifications and user profiles. The platform allows customization with light or dark mode at the account level, affecting all users. To maximize BigFix's capabilities, users are encouraged to add organization devices by clicking Add device and following on-screen prompts.
- Custom Remediation
  Remediate devices on demand using your own Bash, PowerShell, or Action Scripts. Ideal for applying quick fixes, registry changes, or patching apps not covered by default content.
- CyberFOCUS
  CyberFOCUS is a threat intelligence and remediation feature within BigFix SaaS Remediate that provides visibility into CISA KEV (Known Exploited Vulnerabilities) and MITRE ATT&CK reports. It enables users to assess their security posture and take proactive remediation actions based on real-world threat intelligence.
- Deployment Manager
  The Deployment Manager in BigFix streamlines the process of executing actions on devices within a deployment. It allows users to initiate and monitor deployments, which can range in complexity from quick tasks completed in minutes to more involved processes that may take days to finish on all targeted devices.
- Device Explorer
  Use the Device Explorer Dashboard in BigFix to explore all connected devices in table and chart formats. Filter, sort, add devices, perform remediation, schedule maintenance, and export reports—all from one unified view.
- Fixlet Explorer
  Fixlet Explorer enables users to view and manage Fixlets, which are sets of instructions for the BigFix agent to execute on devices. Users can filter and deploy Fixlets, access detailed information on CVEs, and navigate through a data table displaying relevant Fixlet details.
- Fixlet Streams
  Fixlet Streams help to automate the process of remediating endpoint vulnerabilities, such as patch and update deployments, while offering flexibility for manual intervention when critical issues arise. The feature ensures routine security and compliance tasks are handled efficiently, freeing up IT teams to focus on strategic initiatives. Additionally, it allows for ad-hoc remediation, enabling swift responses to urgent issues like zero-day vulnerabilities.
- Protection Level Agreement (PLA)
  Protection Level Agreements are a set of baselines that combine device contexts, and desired patch levels and compliance standards for a given set of Fixlets against agreed-to organisational service levels by key stakeholders including IT, Security, and the overall organization.
- User Management
  The User Manager application in BigFix SaaS provides administrators with a robust interface to efficiently manage user accounts, roles, permissions, and activities in BigFix SaaS. This guide walks you through the process of creating new users, disabling or deleting existing users, setting passwords, managing roles, and more, ensuring you have a smooth and efficient experience.
- Vulnerability Manager
  The Vulnerability provides a real-time overview of an organization's security vulnerabilities, categorized by severity and supporting both CVSS and VPR scoring systems. It includes features for configuring data sources, viewing vulnerability data through charts, and a detailed table for reviewing and managing individual vulnerabilities. Users can also remediate vulnerabilities directly from the dashboard and export data in various formats for further analysis.
  - Creating new datasource
    This module explains how to add a new data source to the Vulnerability Manager.
  - IVR Dashboard
    The IVR Dashboard provides a real-time overview of your organization's exposure to security vulnerabilities, categorized by severity. It supports both CVSS (Common Vulnerability Scoring System) and VPR (Vulnerability Priority Rating) scoring systems, allowing teams to analyze and prioritize remediation efforts effectively.
  - IVR remediation flow
    The IVR Remediation Flow streamlines the process of identifying and addressing security vulnerabilities efficiently. From the IVR dashboard, to initiate remediation and set up your custom remediation flow, complete the following steps.
Guides in PDF format
This section contains links to PDF versions of all the BigFix SaaS product guides.

Creating new datasource

This module explains how to add a new data source to the Vulnerability Manager.

Note: There are two ways users can create a new datasource:

New Users:

When a user logs in for the first time and no datasources exist, the system automatically redirects to the Create Datasource page.
Existing Users:

Users can manually navigate to create a new datasource at any time via the application interface.

Navigate to the Create Datasource Page.
Navigate to Apps > Vulnerability Manager on the left side of the page.
Based on the user state:
- New users are automatically redirected to the Create Datasource page.
- Existing users can click Create New Datasource manually.
The Create New Datasource panel will appear on the right-hand side.

Fill in required information.

Enter the following details:


Field	Description
Tenable URL	The API endpoint for the Tenable instance (e.g., `https://cloud.tenable.com`).
Access Key	Unique key generated from the user's Tenable account.
Secret Key	Secret pair for the access key, also retrieved from Tenable.
Port	443 by default

Note: Ensure the access and secret keys are copied accurately and securely stored. These are required for authentication and data retrieval.

Click Verify credentials. If verification succeeds, a UUID is generated for the data source. Click Save.

On success:

The data source appears in a datasource table.
Initial status is marked as "New", completed as Finished
Running status means the system is currently fetching or processing data.

Click on under Actions field to:

Edit datasource

Click Edit to modify the datasource details.
It is required to re-enter both Access Key and Secret Key, even if unchanged.

Delete datasource

Click Delete to permanently remove the datasource entry.