Beyondtrust

BeyondTrust Key Features

• Data Import:

  • Import applications, scan summaries, and vulnerabilities from BeyondTrust into Centraleyezer, either on-demand or via automated schedules.

  • Supported formats: CSV.

• Detailed Findings:

  • Centraleyezer provides comprehensive request/response details for vulnerabilities detected by BeyondTrust tools.

• Risk Scoring:

  • Configurable severity values for BeyondTrust findings, adjustable based on organizational risk policies.

• Selective Data Import:

  • Supports filtering based on status, scan type, and severity for more precise data imports.

Considerations

• The integration supports mapping one BeyondTrust security tool instance with one Centraleyezer instance.

• Configuring a different BeyondTrust instance in the plugin will overwrite previously imported data.

Requirements

• System Requirements:

  • Centraleyezer Prerequisites: Latest version of the Centraleyezer Vulnerability Management Platform recommended.

  • BeyondTrust Prerequisites: API access must be enabled with proper authentication and must support export of vulnerability findings and API-based integration.

• Permissions and Roles:

  • Centraleyezer: Requires System Admin or Application Security Manager permissions.

  • BeyondTrust Security Tools: User access for vulnerability scan information.

  • Import mappings require admin-level permissions.

Release Notes

Version 1.0.0:

New mappings for vulnerabilities from BeyondTrust security tools during scans include:

Mapped Data Points:

• Asset (IP Address)

• Name

• Description

• Recommendation (Fix Information)

• CVE ID

• Request (Tested Value)

• Reply (Found Value)

• CWE ID

• Criticality (Risk Level)