Blacklisted software - urgent

Vaibhav Sharma1
Tera Contributor

Hi All!

 

One of the customer have approximately 150 authorized software and they are insisting to build a funtionality to blacklist each and every software outside their authorized softwares. If any software other than authorized ones is installed on any machine in the environment, it should be flagged.

 

Is there any possible solution to have this implemented? Your response/insight is highly valuable.

5 REPLIES 5

Daniel Slocum
ServiceNow Employee
ServiceNow Employee

Create a SW Model for each of the 150 software titles. Assign a Discovery Map or use the variables to be sure that Version is "Anything", Edition is "Anything", Platform is "Anything", and Language is "Anything".    Then, for each software model, check the "Restricted Software" checkbox setting it to "true".  A scheduled job runs nightly to create Reclamation Candidates for any installation of Restricted Software.  For those to accurately uninstall, you'll need to be sure that Client Software Distribution is properly set up to uninstall software via SCCM.  

 

https://docs.servicenow.com/bundle/tokyo-servicenow-platform/page/product/orchestration/concept/c_CS...

@Daniel Slocum, if I understood it correctly, isn't @Vaibhav Sharma1 looking for an "opposite solution". They know their ~150 approved products and would like to flag every other installation as "Restricted". Creating a software model for the "certified" software is reasonable, but how to handle the unknown amount of not approved installations?! Could it be an option to use the feature Automatic creation of software models (once) to get an overview about all available software in their environment to flag them, also when this is not recommended by ServiceNow.

Should my response prove helpful, please consider marking it as the Accepted Solution/Helpful to assist closing this thread.

Hi Drein,
That's correct, we are looking for opposite solution from what Daniel has suggested.

 

- We have a list of around 150 "approved/authorized" software and client need installations of any other software to be flagged in SAM module

Ah, Got it.  Yes, you can use the system property to create the SW Models for you.  You'll want to report on SW Models where the Created Source = System Property. Then review and update those to Restricted. The remainder of the process I suggested at first will remove the software from employee devices.