- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-03-2025 09:46 PM
Hi All,
I am continuously developing discovery pattern at customer request and discovering with acc-v.
As the pattern is developed, the check-allow-list should also be updated, which is too cumbersome.
If you can create a check definition, can you make a check that updates the check-allow-list?
Has anyone tried it?
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-04-2025 07:04 AM
If I am reading this correctly, it looks like you want to be able to update the contents of the check-allow-list on the deployed agents from the instance. If that is what you are asking, then the answer should be no.
Go on a client and look at the permissions on the folders and files in c:\programdata for agent client collector. The check-allow-list file defaults to the two initial checks and the service account is only granted read rights from there. Picture it as the server owner's last stand to control what checks can be run by ServiceNow.
Please call me out if that is not correct. I'm pretty sure that is the case though.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-04-2025 07:04 AM
If I am reading this correctly, it looks like you want to be able to update the contents of the check-allow-list on the deployed agents from the instance. If that is what you are asking, then the answer should be no.
Go on a client and look at the permissions on the folders and files in c:\programdata for agent client collector. The check-allow-list file defaults to the two initial checks and the service account is only granted read rights from there. Picture it as the server owner's last stand to control what checks can be run by ServiceNow.
Please call me out if that is not correct. I'm pretty sure that is the case though.
