Remediation Project Update / Sync Interval with Security Console

I searched everywhere…anybody know the interval that Remediation Projects update after scans occur?
I believe this is dependent on synchronization between the Security Console and the Insight platform?

I believe it’s every 12 hours, which in my opinion is not nearly frequent enough.
If this is the case, this causes teams performing remediation to have to wait a day before being able to validate remediation progress.

1 Like

“Insight Platform download frequency” can be set from 1 -12 I think default is 1 or that were I always set my consoles. This setting is under administration. - Console - Platform data Sync

1 Like

I had an R7 case on this and confirmed the following:

Once a Validation Scan is performed within a Remediation Project, the progress of the remediation project will be updated with each scan or validation scan. This means that the solutions and the project are updated as soon as the scan or validation scan is completed. Leveraging the validation scanning feature is recommended as a first step for faster results, especially when dealing with specific vulnerabilities.

@Lee Support answer is incomplete. @michael_caron gave you the key, as each scan or validation scan result won’t be pushed back to cloud from console until that sync happens, default 1 hour.

If this is the case, that’s unfortunate since you would expect R7 support to know the facts. I will let that R7 support engineer know :wink:

If R7 support is wrong, then where is the sync interval configured exactly?
I’d like to confirm my environment.

Any vulnerability scan that checks for the vulnerabilities in said remediation project should update the projects as the console and cloud sync. (This setting is under administration. - Console - Platform data Sync) This can be a validation scan aka launched from the project and looking specifically for vulnerabilities in the projects or a full audit schedule scan.

1 Like

Thanks for confirming @michael_caron
image

I let my R7 support engineer know what @michael_caron mentioned about the update interval, BUT insists that is incorrect.
This is the latest response in my R7 support case by their engineer:

This is incorrect, you can see from the download frequency screenshot added this is only referring to the agent data as stated previously once a validation scan is complete you will update the results. For example, A validation scan updates the status of vulnerabilities right away after it is run. It checks for the same vulnerabilities that were found in a previous scan and updates their status based on the findings. If the validation scan does not detect the vulnerabilities again, it updates their status to “remediated” immediately. However, if the vulnerabilities are still present, their status remains unchanged or is switched back to “unreviewed” if they were previously marked as “remediated”