Service Graph Connector for AWS - How to restrict AWS resource import to ServiceNow?

Go to solution
anhpt
Tera Contributor

‎05-27-2024 12:05 AM

Hi folks,

 

I am using Service Graph connector for AWS to import data from our AWS to ServiceNow. However, currently I face a problem that I do not know how to configure to filter which AWS data should be imported to ServiceNow and which is not as by default SG Connector will import all the data that it gets from the source (AWS). So I have some questions as below and need your help:

1. Can we customize and apply the filter when setting up the SG Connector AWS connection? If yes, could you please provide some advises on how to can do that?

2. If using SG Connectors for AWS, so AWS has responsible for configuring which source ServiceNow can get?

3. Can we have multiple SG connector for AWS connection (as well as its data sources and schedule import) to connect to a single Organization Unit? For example, we have several business areas, and each area have their own cloud service accounts. is it possible if configure the connections base on it?

 

Much appreciated for all your help.

0 Helpfuls
  • 1,196 Views
1 ACCEPTED SOLUTION

Go to solution
Sohail Khilji
Kilo Patron
Kilo Patron

‎05-27-2024 01:46 AM

Hi @anhpt ,

 

Here are your answers :

 

 

1. Can we customize and apply the filter when setting up the SG Connector AWS connection? If yes, could you please provide some advises on how to can do that?

Navigate > Go to IntegrationHub ETL >Here you would find all the transform conditons where you can apply filters to data on what is needed and what is not needed. Basically SG connectors use ETL transform map to transport data from source to target so here you can control on what is needed and what to avoid bringing in...

 

2. If using SG Connectors for AWS, so AWS has responsible for configuring which source ServiceNow can get?

Yes They can also control the resources from AWS end. Generally called scope which decides what to allow and what not to allow.

 

3. Can we have multiple SG connector for AWS connection (as well as its data sources and schedule import) to connect to a single Organization Unit? For example, we have several business areas, and each area have their own cloud service accounts. is it possible if configure the connections base on it?

Yes you can create multiple as per your needs , Only thing to remember is to give a unique prefix to each entity.

Eg:

Apple-SG-AWS-VMs

Tesla-SG-AWS-VMs

 

 


☑️ Please mark responses as HELPFUL or ACCEPT SOLUTION to assist future users in finding the right solution....

LinkedIn - Lets Connect

View solution in original post

0 Helpfuls
5 REPLIES 5

Go to solution
Jayesh Mohan3
Tera Contributor

‎05-27-2024 01:32 PM

@anhpt - We had a similar situation where in which there is a single service principal, but we wanted just some OUs from SG-AWS. When opened a ticket with ServiceNow, they came back saying that we need to customize the connector. The best way is to have your AWS administrators only configure SG scripts for accounts that you want to import. This would work if there is a single service principal and sub accounts under it. This configuration is also helpful in way to avoid re-configuration when new sub-accounts are added as you are reading from the top most service principal.