Create an automation rule to address compliance issues in your environments. If Concert detects an environment is not compliant with an
assessed control, it triggers the defined action, such as creating a ticket in your connected
external issue tracking system.
Before you begin
- You must have Admin or Editor access to the environment
associated with the automation rule.
- You must establish a connection
with your external issue tracking system before configuring an automation rule.
- By default, Salesforce and ServiceNow do not support HTML templates for ticket creation.
To automate ticket creation in either of these platforms, you must take the following steps to
enable HTML templates:
- If using Salesforce, create a custom field in Salesforce. Set the field name to
Custom description and the data type to Rich Text
Area.
- If using ServiceNow, change the field type in
ServiceNow to HTML.
- Create a Slack application in your workspace and
get a Slack bot token.
- In addition to configuring an automation rule, configure a data
ingestion job to pull in data from your issue tracking system so Concert can update ticket statuses.
Procedure
-
Go to
.
- Click Automation rules.
- Click Create automation rule.
- Enter a name for the automation rule for reference.
- Optional: Enter a description for the automation rule.
- Under When this condition occurs, select Compliance
assessment.
- Select the environment to which this automation rule applies. Only compliance issues
related to this environment will be addressed by this automation rule.
- Select the corresponding action to take:
- Open a Jira ticket
- Open a GitHub issue
- Open a ServiceNow ticket
- Open a Salesforce case
- Send Slack message.
Note: At this time, the ability to trigger a Concert workflows
based on a compliance issue is not supported.
- Enter the relevant details corresponding to the issue tracking system where the ticket
will be created.
- Under Using this connection, select the relevant credentials .
Refer to Establishing a connection with a
third-party system for instructions.
- Optional: Next to Assign to, enter a username present
in the target service for the user to whom the issue or ticket gets assigned.
Note: When you assign the ticket to the user, verify the username is available in the
ticketing system and the user have proper permissions to access the third-party ticketing
system.
Under With the following threshold values, select a
Compliance profile and set the result as Non-compliant under When the result
is.
- Click Create.
Results
For each configured automation rule, Concert
automatically creates a ticket in the third-party ticketing system for each prioritized Compliance
profile or groups of Compliance. Priority is calculated based on the non-compliant profile list
impacting the environment. The ticket is assigned to the user based on the provided username, if
set. Multiple Compliance issues are grouped into a single ticket if they are associated with the
same Control ID for that assessment.Note: If your access to the corresponding
application or environment access is revoked, you will be able to see any automation rules that you
created, but you will not be able to edit them.