Welcome
BigFix SaaS User Guide
This guide is for the regular users of BigFix SaaS.
Vulnerability Manager
The Vulnerability provides a real-time overview of an organization's security vulnerabilities, categorized by severity and supporting both CVSS and VPR scoring systems. It includes features for configuring data sources, viewing vulnerability data through charts, and a detailed table for reviewing and managing individual vulnerabilities. Users can also remediate vulnerabilities directly from the dashboard and export data in various formats for further analysis.
Creating new datasource
This module explains how to add a new data source to Vulnerability Manager.

Introduction
BigFix SaaS is an endpoint management platform that automates patch management and inventory across various operating systems and apps. Benefits include cost savings, accessibility, scalability, automatic updates, quick deployment, reliability, high compatibility, SaaS security, and reduced hardware requirements.
Getting Started with BigFix SaaS
This guide helps you get started with BigFix SaaS solution for managing your endpoints. BigFix SaaS is designed to simplify and streamline the management of users, devices, and deployments within your organization.
BigFix SaaS User Guide
This guide is for the regular users of BigFix SaaS.
- My Dashboard
  My Dashboard is the main page where users can add devices to their deployment and access additional functionality through icons for notifications and user profiles. The platform allows customization with light or dark mode at the account level, affecting all users.
- Custom Remediation
  Remediate devices on demand using your own Bash, PowerShell, or Action Scripts. Ideal for applying quick fixes, registry changes, or patching apps not covered by default content.
- CyberFOCUS
  CyberFOCUS is a threat intelligence and remediation feature within BigFix SaaS Remediate that provides visibility into CISA KEV (Known Exploited Vulnerabilities) and MITRE ATT&CK reports. It enables users to assess their security posture and take proactive remediation actions based on real-world threat intelligence.
- Deployment Manager
  The Deployment Manager in BigFix streamlines the process of executing actions on devices within a deployment. It allows users to initiate and monitor deployments, which can range in complexity from quick tasks completed in minutes to more involved processes that may take days to finish on all targeted devices.
- Device Explorer
  Use the Device Explorer Dashboard in BigFix to explore all connected devices in table and chart formats. Filter, sort, add devices, perform remediation, schedule maintenance, and export reports—all from one unified view.
- Fixlet Explorer
  Fixlet Explorer enables users to view and manage Fixlets, which are sets of instructions for the BigFix agent to execute on devices. Users can filter and deploy Fixlets, access detailed information on CVEs, and navigate through a data table displaying relevant Fixlet details.
- Fixlet Streams
  Fixlet Streams help to automate the process of remediating endpoint vulnerabilities, such as patch and update deployments, while offering flexibility for manual intervention when critical issues arise. The feature ensures routine security and compliance tasks are handled efficiently, freeing up IT teams to focus on strategic initiatives. Additionally, it allows for ad-hoc remediation, enabling swift responses to urgent issues like zero-day vulnerabilities.
- Protection Level Agreement (PLA)
  Protection Level Agreements are a set of baselines that combine device contexts, and desired patch levels and compliance standards for a given set of Fixlets against agreed-to organisational service levels by key stakeholders including IT, Security, and the overall organization.
- User Management
  The User Manager application in BigFix SaaS provides administrators with a robust interface to efficiently manage user accounts, roles, permissions, and activities in BigFix SaaS. This guide walks you through the process of creating new users, disabling or deleting existing users, setting passwords, managing roles, and more, ensuring you have a smooth and efficient experience.
- Vulnerability Manager
  The Vulnerability provides a real-time overview of an organization's security vulnerabilities, categorized by severity and supporting both CVSS and VPR scoring systems. It includes features for configuring data sources, viewing vulnerability data through charts, and a detailed table for reviewing and managing individual vulnerabilities. Users can also remediate vulnerabilities directly from the dashboard and export data in various formats for further analysis.
  - Creating new datasource
    This module explains how to add a new data source to Vulnerability Manager.
  - IVR Dashboard
    The IVR Dashboard provides a real-time overview of the organization's exposure to security vulnerabilities, categorized by severity. It supports both CVSS (Common Vulnerability Scoring System) and VPR (Vulnerability Priority Rating) scoring systems, allowing teams to analyze and prioritize remediation efforts effectively.
  - IVR remediation flow
    The IVR Remediation Flow streamlines the process of identifying and addressing security vulnerabilities efficiently. From the IVR dashboard, to initiate remediation and set up your custom remediation flow, complete the following steps.
Guides in PDF format
This section contains links to PDF versions of all the BigFix SaaS product guides.

Creating new datasource

This module explains how to add a new data source to Vulnerability Manager.

Navigate to Create Datasource Page.
Navigate to Apps > Vulnerability Manager on the left side of the page. If no data sources exist, the system will automatically redirect to the Create Datasource page. Then, click on Create New Datasource. The Create New Datasource panel will appear on the right side of the page.

Fill in required information.

Enter the following details:


Field	Description
Tenable URL	The API endpoint for the Tenable instance (e.g., `https://cloud.tenable.com`).
Access Key	Unique key generated from the user's Tenable account.
Secret Key	Secret pair for the access key, also retrieved from Tenable.
Port	443 by default

Note: Ensure the access and secret keys are copied accurately and securely stored. These are required for authentication and data retrieval.

Click Verify credentials. If verification succeeds, a UUID is generated for the data source. Click Save.

On success:

The data source appears in a datasource table.
Initial status is marked as "New", completed as Finished

Click on under Actions field to:

Edit datasource

Click Edit to reopen the input form.
It is required to re-enter both Access Key and Secret Key, even if unchanged.

Delete datasource

Click Delete to remove the data source entry.