How to capture unauthorized changes with ServiceNow discovery?

Josh P1
Giga Guru

Hey all,

In a some articles and demos I have seen, it appears that there is a way to have Discovery capture and report/display unauthorized changes: a change to a CI (such as an attribute value change or the addition of a new CI) has occurred but there is no related / corresponding change ticket.

Example: server A had previously been discovered with 8gb of memory, and this value is the accepted/authorized amount.  The most recent discovery finds server A with 16gb memory; however there is no change ticket in the system that is related to server A that authorizes this addition of memory.

Unfortunately, I am having trouble figuring out the methodology that was used to do this.  Is this type of functionality/behavior achievable out of the box with the discovery plug-in?  Does this come with another plugin/module?  Or is it a custom functionality I need to implement?  (Un/Authorized changes seems like a "basic tenant" of ITIL, part of me wonder if I am not looking for right the terms in the docs?)

Thanks,

Josh

1 ACCEPTED SOLUTION

doug_schulze
ServiceNow Employee
ServiceNow Employee

We did this back at K16. Take a look at this lab..

View solution in original post

10 REPLIES 10

Lab 5 (the very last lab) is the one answering this question; thank you