I need to adjust the FQDN matching rule so that if the full FQDN does not match, it falls back to matching based on the hostname (without the domain).In some cases, the FQDN received from Tenable does not include the domain, whereas the existing CI i...
FQDN Matching EnhancementI want to update the FQDN matching rule so it can handle variations where “.ad.” may or may not be present in the domain.For example, the rule should be able to match:server01.domain.comserver01.ad.domain.comeven if only one...
We are experiencing an issue in Vulnerability Response where the impacted service on a Vulnerable Item (VIT) is not being populated after recalculation. The impacted service is derived from the Related Services table (sn_vul_m2m_ci_services), which ...
Hello Snow Community,In Vulnerability Response Security Exposure Management, there is a stage table named 'sn_vul_tenable_sc_vuln_import' which gets its data from using Tenable API. The table targets Vulnerable items [sn_vul_vulnerable_items] table. ...
We have configured VR to scan devices and it creates VITs for specific client software that is vulnerable. That often is something that is not 'owned' by a remediation team in our environment. We have thousands of VITs created with their associated...
Hi Community, I'm currently working on setting up Qualys integration for Vulnerability Response following lab instructions.For some strange reason, integration job fails with error: "Cannot run REST-based integration without a Qualys API credential s...
I have a requirement to add a custom assessment questionnaire and approvals for a request exception. While developing this, I was able to design the questionnaire and link it to the basic configuration. However, when I try to request an exception, I ...
Hi Experts,I need guidance on implementing a requirement related to remediation timelines in ServiceNow Vulnerability Response. RequirementThe client wants to pause the remediation target calculation when a record is in "In Review" state, and resume ...
Hi Experts,I would like to understand if there is any OOB or recommended custom integration approach in ServiceNow Security Operations to identify phishing emails from a shared/group mailbox.Scenario:The security team maintains a single shared mailbo...
In the Yokohama release, vulnerability solutions management had one schedule job (Process Vulnerability Solution Metrics Queue) When I upgraded to Australia, I see they have broken down the scheduled jobs Process Vulnerability Solution Metrics Queue...
Hi all, I'm trying to integrate Splunk ES with Servicenow. The objective is to let Splunk ES open SIR on SNow and, when the SIR is closed, let it know to Splunk ES. I'm basically following this guide: https://docs.servicenow.com/bundle/orlando-securi...
We have had some success with our Major Security Incident Management deployment and have been hoping to expand on the SharePoint Document Library and Team Chat Channel.Unfortunately, we have not been successful with our attempts after following the s...
Hi All, I need your help to enable encrypt with module on attachment, it's added for one of the table as attached in the screenshot. I need help in configuration of the same for other table. Please refer the screenshot. Thanks,Sayali
Hi All, We have created a Risk Calculator for Application Vulnerability Response, where in we have 4 calculator rules which is calculating the risk score. How to move this calculator rules to QA/Prod? Once I'm taking export, we are only getting the X...
Hi All,I have a requirement to exclude particular asset with asset tag name as ABC and id as 123. So, I gave tag_set_exclude as http parameter and tag ID in values. However, it doesn't work. so, by referring the articles I have added tag_exclude_sele...
