Issue with Service Graph Connector for AWS in ServiceNow

Ramuka
Tera Contributor

‎12-12-2023 06:59 PM

Hello, Good Day!

 

I'm trying an integration using Service Graph Connector for AWS. I have an AWS Trail Account.
I have performed all the steps mentioned in KB1220597 and configured the properties in ServiceNow. While Running the Import Sets get the below error: This error was returned in STS Assume role Action 

 

Ramuka_2-1702436249342.png

When Calling this API using Postman it was working and got a response

Ramuka_3-1702436281970.png

 

Can Some help me on this to complete this Integration

@Aws @Service graph connector for AWS @Integrations 

0 Helpfuls
  • 1,732 Views
7 REPLIES 7

Maik Skoddow
Tera Patron
Tera Patron

‎12-12-2023 09:00 PM

Hi @Ramuka 

unfortunately, it is not clear what your issue is. Please provide more details, context and screenshots to help us understand you better.

And by the way: In your (pretty small) screenshot I can see a response code of "200" - that means "successful". So where is the error?

Maik

0 Helpfuls

Ramuka
Tera Contributor
In response to Maik Skoddow

‎12-16-2023 11:46 PM

Hi @Maik Skoddow,

for Service Graph Connector for AWS, we have Multiple import sets for fetching data from AWS. While Running those sets I'm getting Error. The below Error was received in flow action Called, 

SG-AWS-STS-AssumeRole

{
    "response": {
        "Error": {
            "Code": "AccessDenied",
            "Message": "User: arn:aws:iam::ACCount Number:user/SGSNOWROOT1 is not authorized to perform: sts:AssumeRole on resource: arn:aws:iam::Account ID:role/aws:iam::Account ID:role/SnowOrganizationAccountAccessRole",
            "Type": "Sender"
        },
        "RequestId": "9331d0c3-e040-4cb1-b959-9f75c131ce04"
    }
}
Close



Ramuka_0-1702798589187.png


But When I Test Same API in Postman I'm getting response correctly.

Post Man URL:
https://sts.amazonaws.com/?Version=2011-06-15&Action=AssumeRole&RoleSessionName=Account ID-session&RoleArn=arn:aws:iam::Account ID:role/SGSNOWADRole&SurationSeconds=3600

Ramuka_1-1702798941374.png

 

Kindly Help me on this.

Thanks,
RamuKa.

0 Helpfuls

Maik Skoddow
Tera Patron
Tera Patron
In response to Ramuka

‎12-17-2023 12:30 AM

Hi @Ramuka 

the error message seems to be clear. It's saying that the credentials are wrong. So what you forgot to provide is how are you authenticating in Postman and how in ServiceNow?

Maik

0 Helpfuls

Ramuka
Tera Contributor
In response to Maik Skoddow

‎12-17-2023 03:02 AM

Hi @Maik Skoddow ,

 

In ServiceNow, I'm using AWS Credentials (Access Key ID, Secret Access Key). Please take a look at the Snip below. But I'm accessing Another API for getting organization details with 200 and Response.

Ramuka_0-1702810745937.png


In Postman I'm using AWS Signature as Authentication type.

Ramuka_1-1702810924492.png


Kindly help me on this,

Best Regards,
RamuKa.



0 Helpfuls