Process Discovery FAQ

Answers to frequently asked questions (FAQs) on the Process Discovery, Process Discovery Sensor, and Privacy Enhanced Gateway (PEG) applications.

This document describes Process Discovery and Privacy Enhanced Gateway security features: Process Discovery Security Brief

What versions of TLS is supported by Process Discovery?
Process Discovery supports TLS protocol versions 1.2 and 1.3 only.
Do the Automation Anywhere security risk assessment reports apply to the Process Discovery platform? What Audits are performed?

Automation Anywhere has the following reports with Process Discovery as a component: ISO 27001

Process Discovery is audited to the following frameworks and has the following reports:

  • SOC 2 Type 2

  • HIPAA

  • PCI

In addition, the product is GDPR and CCPA compliant.

Can users export their Security Information and Event Management (SIEM)?
Users can export process data and event data into a .csv file. Process Discovery cannot be connected directly to a SIEM. The audit logs track all changes, who made the change, and when the changes are made to the following elements:
  • Allow/block list
  • Event logs
  • Process Discovery configuration policy
  • Observers
  • Tenants
  • Processes
  • Windows
  • Username
Is Multi-Factor Authentication (MFA) supported?
Yes, Single sign-on and SAML 2.0 are supported.
Does the Process Discovery platform use vulnerability management?

We have internal and external security testing programs. Internal testing spans planning, development, and testing phases, with each test building on previous work. We have an established approach to static and dynamic code analysis at both the development and testing phases. External testing is done on production and is built around the concept of ongoing assurance.

What is the Process Discovery Security Incident Management process?
Incident Response: Automation Anywhere maintains an incident response program designed to analyze, contain, eradicate, and recover from security and safety incidents impacting Automation Anywhere managed networks and/or systems or customer data.
Incident Notification: If Automation Anywhere determines that customer data within its control has been subject to a security incident, the customer will be notified under and according to applicable law.
Incident Post-Mortem: Automation Anywhere runs a post-mortem after an incident has occurred to analyze and improve tools and processes to mitigate future occurrences.
How does Process Discovery handle security configurations and changes?

Automation Anywhere takes care of the following items:

  • Secure multi-tenant environment on Google Cloud Platform
  • Boundary security (FW, IDS)

  • Source code scanning

  • Pen testing Threat & vulnerability scanning

  • Container security management

Does Process Discovery have a disaster and recovery plan?
We perform daily backups.

As per our current disaster recovery policy of 2021, our recovery point objective (RPO) is 6 hours and recovery time objective (RTO) is 24 hours.

Does the PEG redaction process allow users to set anonymized values instead of clearing out redacted values?
No.
Where are Support Teams located?
Our support teams are based around the world to provide follow-the-sun support with personnel located in the US, Europe, Japan, India, and Poland. Our support plans are designed to help you get the answers you need, when you need them, maximizing your investment in Automation Anywhere.
Can Automation Anywhere customer support see masked customer data?
No, the support teams do not have specialized access.
Is there any consent management platform to register client/consumer consent regarding data collection?
Since the customer organization owns their data, it is the responsibility of that customer to collect and maintain consent.
Is there a mechanism to delete stored data?
Yes, we can delete all of the data collected for various different criteria, including all of the data for specific times for a specific observer. If you want to delete date from storage, please notify Automation Anywhere customer support. The data will be permanently removed during the next backup process.
Is there a backup data retention policy in place?
Yes.
How do I increase the storage capacity of my Process Discovery cloud instance?
This is done automatically through the cloud service provider.
What is the total time required to get the PEG VM Image working on the Cloud Provider Environment (AWS, GCP, Azure)?
The time required to perform this task is highly dependent on skill set of the person completing the steps. For more information on the process, see Install PEG.
Does using PEG delay the transfer of data from the customer's instance to the Process Discovery cloud instance?
Yes. Data collected within an 8 hour period should transfer to the platform within 24 hours. The platform then can take up to 24 hours to process.
What will happen with PEG VM if the cloud service is down temporarily?
If forwarding mode is enabled, PEG will not forward events. After multiple attempts per event (about 5 attempts), PEG will mark the event as not forwarded and will not try it again.
How is Advanced Redaction implemented?
The latest PEG versions have all redaction settings now available in the user interface.
What is the PEG Analytics Portal?
It is the web interface to the Elastic database. It uses Open Distro (a Kibana-like tool) to enable customers to see the data, including a dashboard that shows which data is masked or in forwarding mode.
What encryption methods or key pairs are recommended for storage options specific to Azure, AWS and GCP?
We recommend you use the standard hard drive encryption methods available in those respective clouds using whatever mechanisms they provide.
How often does the Process Discovery Sensor upload data?
Every 5 minutes.
What is the CPU (VDI) Performance impact?
Typically 2 - 5 %
Are there any bandwidth metrics for typical usage?
Process Discovery Sensor typically sends about 10kpbs outbound.

For PEG, it is typically 10kbps outbound multiplied by the number of concurrent sensors.

Will there be an admin who has access by default to the platform? What other users will have access to the instance and data?
See Process Discovery user roles.
Which versions of Microsoft Edge does Process Discovery support?
Any of the Chromium-based versions released after January 15, 2020.
Does the customer organization determine the apex domain for PEG DNS names, such as example.com?
Yes
Are events and PEG events stored off-site in case of a disaster recovery incident?
PEG events are not stored off-site. Process Discovery data is backed-up on a regular basis.
What are the storage requirements?
We require 2TB of storage and recommend SSD standard. Customers might need to delete data to free up space for each cycle.