Skip to main content

BMC Discovery

This Integration is part of the BMC Discovery Pack.#

Supported versions

Supported Cortex XSOAR versions: 6.0.0 and later.

BMC Discovery is a SaaS-based, cloud-native discovery and dependency modeling system that provides instant visibility into hardware, software, and service dependencies across multi-cloud, hybrid, and on-premises environments. This integration was integrated and tested with BMC Discovery v.22.1.

Configure BMC Discovery Integration in Cortex#

ParameterDescriptionRequired
Server URLBMC Discovery URLTrue
API TokenBMC Discovery user API token*True
Use system proxy settingsFalse
Trust any certificate (not secure)False
  • The BMC Discovery user must have the following permissions: admin, api-access, discovery, system

Commands#

You can execute these commands from the CLI, as part of an automation, or in a playbook. After you successfully execute a command, a DBot message appears in the War Room with the command details.

bmc-discovery-scan-status-list#

Get status of all currently running scans (runs) or a specific scan (run)

Base Command

bmc-discovery-scan-status-list

Input#

Argument NameDescriptionRequired
run_idID of a specific scan (run)Optional

Context Output#

PathTypeDescription
BmcDiscovery.Scan.Status.uuidStringScan UUID
BmcDiscovery.Scan.Status.blockedBooleanIs blocked
BmcDiscovery.Scan.Status.doneNumberNumber of scanned hosts
BmcDiscovery.Scan.Status.totalNumberNumber of hosts to scan
BmcDiscovery.Scan.Status.finishedBooleanIs finished
BmcDiscovery.Scan.Status.labelStringScan name
BmcDiscovery.Scan.Status.scan_kindStringIP/Cloud/API
BmcDiscovery.Scan.Status.scan_levelStringFull discovery/Sweep scan
BmcDiscovery.Scan.Status.scan_typeStringSnapshot/scheduled
BmcDiscovery.Scan.Status.userStringInitiating user
BmcDiscovery.Scan.Status.valid_rangesStringIP ranges to scan
BmcDiscovery.Scan.Status.cancelledStringIs canceled
BmcDiscovery.Scan.Status.keyStringScan key
BmcDiscovery.Scan.Status.outpost_idStringOutpost id
BmcDiscovery.Scan.Status.scopeStringScan scope
BmcDiscovery.Scan.Status.scan_params.providerStringScan provider
BmcDiscovery.Scan.Status.scan_options.NO_PINGBooleanIs NO-PING option set
BmcDiscovery.Scan.Status.scan_options.SESSION_LOGGINGBooleanIs SESSION_LOGGING option set
BmcDiscovery.Scan.Status.scan_options.SKIP_IMPLICIT_SCANSBooleanIs SKIP_IMPLICIT_SCANS option set
BmcDiscovery.Scan.Status.scan_options.MAX_START_SSM_SESSIONSBooleanIs MAX_START_SSM_SESSIONS option set
BmcDiscovery.Scan.Status.scan_options.MAX_ACTIVE_SSM_SESSIONSBooleanIs MAX_ACTIVE_SSM_SESSIONS option set
BmcDiscovery.Scan.Status.scanningNumberNumber of entities in scanning status
BmcDiscovery.Scan.Status.pre_scanningNumberNumber of entities in pre_scanning status
BmcDiscovery.Scan.Status.starttimeDateScan start time
BmcDiscovery.Scan.Status.waitingNumberNumber of entities in waiting status
BmcDiscovery.Scan.Status.uriStringScan URI
BmcDiscovery.Scan.Status.inferredStringScan inferred URI
BmcDiscovery.Scan.Status.resultsStringScan results URI
BmcDiscovery.Scan.Status.consolidatingBooleanIs consolidating
BmcDiscovery.Scan.Status.consolidation_sourceStringConsolidation source

bmc-discovery-scan-create#

Create a new snapshot scan (run)

Base Command

bmc-discovery-scan-create

Input#

Argument NameDescriptionRequired
labelScan (run) nameYes
rangesIP rangeYes

Note: The following run parameters are predefined:

  • Kind = IP
  • Level = Full Discovery
  • Type = Snapshot

Context Output#

PathTypeDescription
BmcDiscovery.Scan.Create.urlStringNew scan URI
BmcDiscovery.Scan.Create.uuidStringNew scan UUID

bmc-discovery-scan-summary#

Retrieve scan (run) results summary

Base Command

bmc-discovery-scan-summary

Input#

Argument NameDescriptionRequired
run_idAn ID of the scanYes

Note: The following run parameters are predefined:

  • Kind = IP
  • Level = Full Discovery
  • Type = Snapshot

Context Output#

PathTypeDescription
BmcDiscovery.Scan.Summary.SuccessNumberNumber of successfully scanned entities
BmcDiscovery.Scan.Summary.SkippedNumberNumber of skipped entities
BmcDiscovery.Scan.Summary.NoAccessNumberNumber of entities with no access
BmcDiscovery.Scan.Summary.NoResponseNumberNumber of entities with no response
BmcDiscovery.Scan.Summary.ErrorNumberNumber of entities in error
BmcDiscovery.Scan.Summary.DroppedNumberNumber of dropped entities

bmc-discovery-scan-stop#

Cancel a currently running scan

Base Command

bmc-discovery-scan-stop

Input#

Argument NameDescriptionRequired
run_idAn ID of the scanYes

Note: The following run parameters are predefined:

  • Kind = IP
  • Level = Full Discovery
  • Type = Snapshot

Context Output#

PathTypeDescription
BmcDiscovery.Scan.Stop.cancelledBooleanScan cancel status

bmc-discovery-scan-results-list#

Get a list of hosts by specific result type

Base Command

bmc-discovery-scan-results-list

Input#

Argument NameDescriptionRequired
run_idYes
result_type"Available options: Success, Skipped, NoAccess, NoResponse, Error, Dropped"Yes
offsetSearch results offsetOptional
limitSearch results limitOptional
results_idSearch results idOptional

Context Output#

PathTypeDescription
BmcDiscovery.Scan.Result.countNumberNumber of hosts of the result type
BmcDiscovery.Scan.Result.kindStringResult kind type
BmcDiscovery.Scan.Result.next_offsetNumberNext offset to be used
BmcDiscovery.Scan.Result.offsetNumberCurrent offset value
BmcDiscovery.Scan.Result.results_idStringCurrent result id
BmcDiscovery.Scan.Result.resultsUnknownThe actual scan result data

bmc-discovery-search#

Search for a node by IP address or hostname

Base Command

bmc-discovery-search

Input#

Argument nameDescriptionRequired
ipIP addressOptional
hostnameHostnameOptional
kind"Node kind (Host, NetWorkDevice, SNMPManagedDevice)"Single Select
nameSearch nameOptional

Context Output#

PathTypeDescription
BmcDiscovery.Search.countNumberNumber of returned results
BmcDiscovery.Search.dataUnknownSearch results
BmcDiscovery.Search.nameStringName of the search

bmc-discovery-search-custom#

Run a user defined query

Base Command

bmc-discovery-search-custom

Input#

Argument nameDescriptionRequired
queryFull search query*Yes
offsetSearch results offsetOptional
limitSearch resuluts limitOptional
results_idSearch results idOptional

*See the documentation for reference

Context Output#

PathTypeDescription
BmcDiscovery.Search.countNumberNumber of returned results
BmcDiscovery.Search.dataUnknownSearch results