Help Center/ SecMaster/ User Guide/ Playbook Overview/ Host Vulnerability Notification (Notification on host asset risk statistics)
Updated on 2026-02-06 GMT+08:00
View PDF
Share

Host Vulnerability Notification (Notification on host asset risk statistics)

Playbook Overview

The Notification on host asset risk statistics playbook queries the host assets with elastic IP addresses (EIPs) in SecMaster Resource Manager module and notifies you of the vulnerability statistics.

Trigger condition: The playbook takes effect immediately after the configuration is complete. It is executed once at 08:00 every day and runs continuously.

You need to enable this playbook for it to take effect.

Prerequisites

  • Your SecMaster professional edition is available.
  • SecMaster has obtained the SMN FullAccess permission, which specifies all permissions of SMN.
    Table 1 Description

    Permission

    Description

    Principal

    Usage

    SMN FullAccess

    All permissions for SMN.

    SecMaster_Agency

    SecMaster uses SMN to send playbook execution notifications.

    Perform the following steps to check whether SecMaster has obtained the SMN FullAccess permission: If the permission is not allocated, allocate it to SecMaster by referring to Authorizing SecMaster.

    1. Log in to the SecMaster console as an administrator.
    2. Click in the upper left corner of the page and choose Management & Governance > Identity and Access Management.
    3. In the navigation pane on the left, choose Agencies. On the Agencies page, click SecMaster_Agency and then click the Permissions tab to view all authorization records of SecMaster_Agency.
    Figure 1 Viewing Agency Authorization Records

Step 1: Create and Subscribe to a Topic

The Attack link analysis alert notification workflow needs to use Simple Message Notification (SMN) to create and subscribe to a notification topic.
  1. Log in to the SecMaster console.
  2. In the upper left corner of the page, click and choose Management & Governance > Simple Message Notification.
  3. Create a topic.
    1. In the navigation pane on the left, choose Topic Management > Topics. In the upper right corner of the displayed page, click Create Topic.
      Figure 2 Create Topic
    2. In the Create Topic dialog box displayed, configure topic information and click OK.
      • Topic Name: Set it to SecMaster-Notification.
      • Display Name: SecMaster notification topic is recommended.
      • Retain the default settings for other parameters.

      Topic Name must be to SecMaster-Notification, or playbooks may fail to be executed.

  4. Add a subscription.
    1. On the Topics page, locate the row that contains the SecMaster-Notification topic and click Add Subscription in the Operation column.
    2. On the displayed Add Subscription slide-out panel, configure subscription information and click OK.
      • Protocol: Select Email.
      • Endpoint: Enter the email address of the subscription endpoint, for example, username@example.com.
  5. Confirm the subscription.

    After a subscription is added, a confirmation email will be sent to the email address set in 4. Click the subscription confirmation link in the email. A page for a successful subscription will be displayed.

Step 2: Configure and Enable the Playbook

In SecMaster, the initial version (V1) of the Notification on host asset risk statistics workflow is enabled by default. You do not need to manually enable it. The initial version (V1) of the Notification on host asset risk statistics playbook is also activated by default. You only need to enable the playbook.
  1. Click in the upper left corner of the page and choose Security & Compliance > SecMaster.
  2. In the navigation pane on the left, choose Workspaces > Management. In the workspace list, click the name of the target workspace.
    Figure 3 Workspace management page
  3. In the navigation pane on the left, choose Security Orchestration > Playbooks.
    Figure 4 Accessing the Playbooks tab
  4. On the Playbooks page, search for the Notification on host asset risk statistics playbook and click Enable in the Operation column of the Notification on host asset risk statistics playbook.
  5. In the dialog box displayed, select the initial playbook version v1 and click OK. If the Playbook Status of the Notification on host asset risk statistics playbook changes to Enabled, the playbook has been enabled successfully.

Implementation Effect

The Notification on host asset risk statistics playbook queries the host assets with elastic IP addresses (EIPs) in SecMaster Resource Manager module and notifies you of the vulnerability statistics.

Trigger condition: The playbook takes effect immediately after the configuration is complete. It is executed once at 08:00 every day and runs continuously.

After the playbook is executed, SecMaster notifies users who have subscribed to the SecMaster-Notification topic in SMN. The following is an example.

Figure 5 Email notification sent by the Notification on host asset risk statistics playbook

Parent topic: Playbook Overview