Hi All,

Two key risks we would like to use LeanIX to address here in our organisation is out of date software and / or operating systems.  Were early in our LeanIX journey so we have no plans for mass population of IT components yet but instead are focussing on value  add and these two key things are a historical challenge here adding risks to our application portfolio.

Were finding the aggregated obsolescence capability in LeanIX a really powerful tool for tracking this software support lifecycles and surfacing it up.  To do this we create an IT component for the application with the software version / vendor lifecycle in it and it all works correctly.

For operating systems we have observed there is a dedicated field in the IT component fact sheet for server operating system.  However this value does not seem to be used in calculating aggregated risks and seems to be treated  as a separate element of an IT component and it has no concept of lifecycle with it.

Do people use the server operating system field in the IT component fact sheet?  I have thought about creating an OS IT Component of type software of  for example “Windows Server xxxx”, adding the lifecycle in and then associating it with all relevant applications.  This would then be applied to the aggregated obsolescence view.

Is there a reason not to do this and effectively not use / disregard the dedicated field within LeanIX?

Has anyone else solved the above use case with LeanIX?

Thanks,

Neil