Documentation Center
AlienVault® USM Appliance™

Changing the Vulnerability Ticket Threshold

Applies to Product: USM Appliance™ AlienVault OSSIM®

As discussed in the Vulnerability Ticket Thresholds , USM Appliance sets a threshold for vulnerabilities and generates a ticket automatically whenever the detected vulnerability surpasses the threshold.

The vulnerability ticket threshold is a value that goes from 0 to 10, with 1 being a critical situation and 10, an uncritical situation. Zero (0) disables this option.

Any vulnerability with a higher risk level than the value you select automatically generates a vulnerability ticket.

The default vulnerability ticket threshold in USM Appliance is Low, but this is user-configurable.

Use the Vulnerability Ticket Threshold field to enter the value that should generate a ticket.

You can change the threshold from either Environment > Vulnerabilities > Overview > Settings or Configuration > Administration > Main > Vulnerability Scanner. Steps for each location follow.

To change the vulnerability ticket threshold from Environment

  1. Go to Environment > Vulnerabilities > Overview > Settings.

  2. From the Settings dialog box, select the appropriate threshold value from the Vulnerability Ticket Threshold list (shown).

    Settings dialog box with Vulnerability Ticket Threshold list selected.

  3. Click Update.

To change the vulnerability threshold setting from Configuration

  1. Go to Configuration > Administration > Main > Vulnerability Scanner.

    Main page with Vulnerability Scanner selected.

  2. Select a threshold between Info, Low, Medium, High, Serious, and Disabled by clicking the Vulnerability Ticket Threshold list.
  3. To save the change, click Update Configuration.