Uncovering the Invisible: How ServiceNow Discovery Maps Your IT World
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
2 hours ago
In the current intricate IT environment, the task of having a correct and current Configuration Management Database (CMDB) is a challenge of monumental proportions. ServiceNow Discovery is the engine that drives the IT Operations Management (ITOM) and is the tool that gives the automated visibility needed to be able to manage assets, services, and security. This blog post will delve into the “What” and “How” of ServiceNow Discovery.
What is ServiceNow Discovery?
ServiceNow Discovery is an agentless solution that scans your network to identify computers, servers, printers, and other IP-enabled devices. Beyond mere identification, it delves into the applications and services running on these devices, creating a rich map of your IT environment
The Two Pillars of Discovery
| Horizontal Discovery | Scans IP ranges to discover devices and their immediate connections (e.g., an application running on a server). | Infrastructure Visibility |
| Top-Down Discovery | Used by Service Mapping to identify and trace the flow of a specific business service (e.g., an Email Service). | Service Context & Availability |
The Discovery Lifecycle: Four Critical Stages
Discovery has a four-stage process to ensure that all Configuration Items (CIs) are correctly discovered and recorded without duplication.
. Scanning (The Shazzam Phase): Discovery transmits the Shazzam probe to scan various IP addresses for open ports (e.g., Port for Port Linux) for Windows
. Classification: After a device has been discovered, Discovery transmits classification probes to identify the operating system or device type (e.g., Windows Server vs Cisco Switch).
. Identification: This is the most important phase. Discovery employs Identification Rules to identify whether the device is already recorded in the CMDB. It examines distinct attributes such as Serial Numbers or MAC Addresses to avoid duplication.
. Exploration: After the device has been identified, Discovery “explores” the device to collect detailed technical information, such as CPU, RAM, software installed, and processes running
The Role of the MID Server
The Management, Instrumentation, and Discovery (MID) Server is the behind-the-scenes player in the process. It is a lightweight Java application that is installed behind your firewall. Secure Communication: The MID Server makes all communications with the ServiceNow instance over HTTPS (SOAP), so you do not have to open inbound firewall ports. Agentless Execution: It speaks to your devices using standard protocols such as SSH, WMI, and SNMP, so you do not have to install software on each server
In-Depth Information Uncovered
ServiceNow Discovery is more than just identifying a server. It creates a detailed picture. Some of the most important pieces of information include:
Hardware Information: Serial numbers, number of CPUs, amount of RAM, and disk partitions.
Software Information: A complete inventory of software packages and versions.
Network Information: IP addresses, MAC addresses, and network interface cards (NICs).
Relationships: Which applications are running on which servers and how they are connected to databases
Conclusion
ServiceNow Discovery is more than a scanning tool; it is a valuable asset to any IT organization. By automating the discovery and exploration of your infrastructure, it offers a “single source of truth” that enables better decision-making, faster incident resolution, and more accurate change management.
If you found this article useful, please mark it as Helpful. It helps others find the content more easily 👍
