Forum Discussion

SKadish's avatar
SKadish
Brass Contributor
Jan 31, 2025

Vulnerability Management: Why don't tags show up on exposed devices?

In Vulnerability Management's Security Recommendations, there's a "tags" column for the exposed devices, but it isn't populated.  Why?

Wouldn't this screen be one of the most useful places to see tags?  "Let's see, I need to update the software on these twenty machines.  One machine has the "user on leave" tag, another one has the "pending reboot" tag - better contact that user."

I shouldn't have to drill down into the devices table to check out each machine in the exposed list.

 

  • Alikoc's avatar
    Alikoc
    Iron Contributor

    Hello,

    Check whether the tags are correctly assigned to devices in the system backend or database. Verify the mapping between tags and exposed devices in the Vulnerability Management system. Ensure that the tags are being pulled from the correct field or database table.

    Then,

    Ensure that the tags column is enabled to retrieve and display tag data. If the column is not linked to the correct data source, update the view or query supporting the user interface to include the tags. Work with the development or IT team to ensure the tags column is correctly querying the relevant devices table.

    If tags are assigned manually, implement automation rules to populate tags based on device status or metadata (e.g., device state, user status, or recent activity). Use scripts or tools to automatically update tags for devices marked as “pending reboot,” “user on leave,” or other relevant statuses.

    Since the devices table contains tags, cross-check data integrity between the devices table and the exposed list. Ensure synchronization between the devices table and the Vulnerability Management view to avoid discrepancies.

    Request customization of the Vulnerability Management interface:

    • Dynamically display tags.
    • Allow filtering or grouping directly by tags in the exposed devices view.

    Advocate for improved visibility in the user interface to make tag-based actions more efficient.

    If this response is helpful, please click "Accept Answer" and feel free to upvote it. If you have additional questions about this response, please click "Comment."

    Best regards,
    Ali K

    • SKadish's avatar
      SKadish
      Brass Contributor

      Hello Ali,

      Thank you, but can you please clarify what you mean in those first two paragraphs?  What system backend?  What database?  What development team?  I work for a law firm; we don't employ coders.  I'm talking about the tags that Microsoft assigns, things like "pending restart" or the tags I manually create and assign.

      Thank you,

      - Steve

  • luchete's avatar
    luchete
    Iron Contributor

    The tags not showing up on exposed devices might be due to how they’re assigned or synced. The tags might not be fully integrated or updated in the Security Recommendations view. It would be useful to see the tags right there, but for now, you may need to check the devices table for full tag details. I'm totally agree, having the tags visible in the exposed list would make it much easier to take action quickly without drilling down.

    regards!

Resources