Cortex Workflows Overview
• 2 min to read •
Syxsense Cortex is a powerful and intuitive automation framework that allows you to create custom task sequences within the Syxsense console.
Syxsense Cortex processing uses data to trigger actions, including endpoint information like vulnerability state, network location, software installations, processes running, and more. A drag-and-drop user interface then sequences actions like patching, software deployment, security scans, and full scripting (PowerShell, C#, VB) into our 'Next Generation' IT process engine.
The 24x7 demands of IT and Security require that solutions be delivered in a variety of manners and times on schedules planned and predictable, constantly guarding, or unforeseen and urgent. Any of these options can target the devices you need by query, group, site, or organizational structure of choice.
Cortex Sequences allow creation of a chain of default or customized workflows in a single task for a particular device.
Task Actions
Actions are bricks from which you build your complex automated workflows. Add a task action to a Cortex Workflow to perform simple or highly complex functions, and run another task action on the behavior of the previous actions. Multiple outcomes can be configured from a single workflow step, as well as multiple actions lined to a single next step.
Follow the link to the Actions page to find out more.
Example: Check if a reboot is required before doing a Patch Scan.
Discovery: Syxsense CortexDiscovery: Syxsense Cortex
Cortex provides an organizational structure for managing existing Cortex workflows into folders. There is an overview of these folders and the top toolbar within the Cortex dashboard below.
 |
Display history of a selected Syxsense Cortex Workflows. |
 |
Create a new Syxsense Cortex Workflow. |
 |
Modify an existing Syxsense Cortex Workflow. |
 |
Remove an existing Syxsense Cortex Workflow. |
 |
Add a new folder to group selected Cortex Workflows. |
 |
Move Cortex Workflow between folders. |
 |
Copy the existing Cortex Workflow. |
 |
Export a Syxsense Cortex Job. |
 |
Export a Syxsense Cortex Job. |
 |
Import a Syxsense Cortex Job. |
 |
Manage workflow playbooks |
| Workflows - Personal |
All Syxsense Cortex Jobs created by the current user. These Jobs are scheduled to Run Now, via Tasks or as a Publish Policy. |
| Workflows - Shared |
All Syxsense Cortex Jobs created by everyone. These Jobs are scheduled to Run Now, via Tasks or as a Publish Policy. |
| Workflows - Health |
All Syxsense Cortex Jobs which monitor device health or performance counters. These Jobs are scheduled to Run Now, via a Tasks or as a Publish Policy. |
| Workflows - Security | All Syxsense Cortex Jobs which view status of BitLocker, find un-desired processes or Firewall status. These Jobs are scheduled to Run Now, via a Tasks or as a Publish Policy. |
| Workflows - Software |
All Syxsense Cortex Jobs which search for files or startup software. These Jobs are scheduled to Run Now, via Tasks or as a Publish Policy. |
| Workflows - System |
All default Syxsense Cortex Job. These Jobs are scheduled to Run Now, via Tasks or as a Publish Policy. System jobs cannot be modified. |
| Policies - Shared | All Syxsense Cortex Jobs created by everyone which are configured to run as a Publish Policy. |
The overview of the toolbar for existing Cortex workflows is available from the Cortex dashboard.
 |
Click 'Run Now' from within a ready Syxsense Cortex Workflow. You may also click the button from within the Cortex Workflows list. After clicking 'Run now' a 'Select Devices' option will appear. Select a single or multiple devices to run the job on > click 'Run Now'. |
|
Modify an existing Syxsense Cortex Workflow. |
 |
Publish the Cortex Workflow as a policy. This will open the Policy builder window. You can add a name and description of the policy, select a recurrence trigger, configure the blackout hours options and select the devices on which the policy will be running. |
Last Update: Mar 12, 2024
Copyright ©2024 by Syxsense, Inc. All Rights Reserved