Rapid7 InsightVM Jira Integration for Remediation Projects

This blog details you on how to create a Atlassian Jira ticketing integration on InsightVM. If you don’t have an atlassian account yet. Here are the steps to create an trial account for free on Atlassian Cloud. If you have already a Atlassian Jira environment you can go to step 13 to only give specific permissions to a user so you can use this username to integrate with InsightVM Projects (Jira Integration)

To create a trial Jira account at Atlassian Cloud

  1. Click on “Try Free” at www.atlassian.com

  1. Click on “Try Cloud” on “Jira Software”
  2. Click on “Try it for Free”

  1. Fill the details and click on “Start Now”

  1. After that you will receive an verification email to create your Jira Cloud site. Click on “Verify Email Address”

  1. After verifying your email you will be presented with this following screen
  2. After that you will create a new Project

  1. You can choose “Project Management” template for project details

  1. Click on Next on Details
  2. Give a name and a key for your project
  3. Now we start to give permissions to one user (that will be used on InsightVM). If you cant find Permissions it is at https://<<JIRA_SITE>>/secure/admin/EditPermissions!default.jspa?schemeId=0. This link will take you step 16 on this document. If you want to do step-by-step Click Projects
  4. Select your project
  5. On the new screen click “Permissions”
  6. Click on “Edit Permissions”
  7. Then “Grant Permissions”

  1. And give following permissions to your user. Permissions details can be found on https://help.rapid7.com/insightvm/en-us/#Files/Ticketing_integration.html?Highlight=jira page

C:\Users\osen\AppData\Local\Microsoft\Windows\INetCache\Content.Word\Jira_1.png

Now we are done with Jira. Lets go to InsightVM console.

  1. Login to InsightVM and go to “Projects” Page. On this page you can “Add a Ticketing Connection
  2. Choose Jira
  3. Enter your site details. If you have used this document then you have only 1 user which is admin user. So in this screen instead of using email address when you register you use admin as user name (or if you have created another user on Jira and give right permissions on step 16 o this document than you need to use this user. Then click “Save and Continue” This will take a while

  1. On this page you set “Solution Status Mappings” for Jira for “Awaiting Verification” and “Will Not Fix”
  2. Select “Project Name” and “Issue Type”. This is the project name you have created on step 10 of this guide
  3. Here we set “Field Mappings”. Fill Critical Vulns for Name, Choose admin for Reporter, critical for Labels and Highest for priority
    C:\Users\osen\AppData\Local\Microsoft\Windows\INetCache\Content.Word\Jira_5_1.png
    C:\Users\osen\AppData\Local\Microsoft\Windows\INetCache\Content.Word\Jira_5_2.png
  4. On Assignment Rules give a name and then choose user to assign. Then Click on “New Rule” to create a new Rule for ticket assignment.
  5. On this page you can create filters and default Assignee. Remember to see GREEN BALL on your criteria to be sure that criteria is right
  6. At this stage we have made a successful Jira Connection. Check if this Jira Integratin status (Enabled)

  1. As we have made a Jira Integration. It is time to create “Remediation Projects” For this click on “Create a Project” link
  2. After clicking on “Create a Project” we see a page like below. Remember to see GREEN BALL and also DO NOT Forget to click APPLY. When you click APPLY it gets greyed out and you can see it is in affect. You also see the Vulnerability count changes based on your criteria. We have also Assigning tickets to another user “linuxadmin” this user has been created before and is responsible for managing Linux Servers (You can create user based on Dynamic or Static Tags)

On this screen scroll down to “Auto Create Tickets”

After that it will take a while for tickets to be created at Jira. (10-15 minutes depending on your ticket number)

After tickets are created you can see your tickets created on Jira

Also on InsightVM:

After this you can “Start Progress” on Jira (upgrade libxml2 package on this case). Its status is “TODO” right now.

And after starting progress its status become “IN PROGRESS”

And after patching you can click “Done”

You can also see ticket history on “HISTORY” tab