Hello Team,
I am currently working with BigFix Security and Compliance Analytics (SCA) and need to know if it’s possible to add exceptions to SCA policies or results using the API.
Specifically, I am looking for a way to automate this process, as the current options appear limited:
- Exclude the entire checklist, which is not ideal.
- Add exceptions one by one, which is time-consuming for large datasets.
Is there a way to programmatically manage exceptions more efficiently using the API? If so, could someone provide guidance?
This approach can be implemented by using a client setting to mark devices as exempt and adding exclusion relevance to the respective site.
Alternatively, you can create device groups and exclude all devices within these groups from the site, providing a more manageable method of exemption.
This can also be addressed through the following approach:
- Create a Parametrized Fixlet
Design a fixlet that accepts inputs such as the fixlets to be exempted and the target devices (all devices, specific devices, or devices grouped via GPO).
- Automate with a Script
Deploy a script to run in the background on the BigFix master server or an API host. The script should perform the following actions:
A. Query the desired fixlets or their IDs to retrieve associated sites and relevance.
B. Download the fixlets and update their exemption relevance to include custom logic.
C. Re-upload the modified fixlets, ensuring no duplicate entries are created.
D. Generate a master XML file to initiate actions based on the collected data, targeting the devices identified for exemption.
By leveraging these methods, you can streamline the exemption process, even for large datasets, while maintaining efficient and organized operations.
Adding exceptions using API would be highly recommended. I was pretty sure that there was already an idea being posted https://bigfix-ideas.hcltechsw.com/ but I did not find it.