SecOps forum

Risk assessment

In Risk assessment, the assess and all other buttons are greyed out. Checked all the roles, did not find anything, Any reason behind this? I have attached the screenshot.

Need bulk deferrals for AVITs, CVITs and CTRs

I have found the bulk edit button works for doing bulk deferrals for VITs. I also need this for AVITs, CVITs and CTRs as well as their remediation tasks. Can someone assist and provide some documentation?

Any way to add Configuration Item to a Configuration Compliance Remediation Task (CRG)

We're setting Configuration Compliance Remediation Tasks to group by Assignment Group and Configuration Item. We're wanting to utilize certain fields from the CI in our approval rules for CRGs and so are hoping to set the CI on the CRG itself. I was ...

Verify AWS SNS message's integrity using dynamically loaded SNS X509 certificate

We came across a scenario where we need to verify the integrity of the AWS SNS messages in HTTP API at ServiceNow APP. When I say integrity of the message particularly, I am talking about verifying whether the messages are coming from AWS SNS only an...

Resolved! Understanding potential duplicate Discovered Items/CI records and Reclassification

- KB1349923 mentions that after reapplying the CI lookup rules, there will be records within unclassed hardware/incomplete IP with no use. - In The more you know - SecOps and CMDB Interactions - YouTube, Scenario 4, it states that incomplete IP class...

Resolved! VR Tenable Calculator configuration in VR

Can someone please share the VR Tenable calculator configuration in ServiceNow Vulnerability Response. I am not able to find certain attributes in ServiceNow and having difficulties on Tenable VPR attribute that matches in ServiceNow. DO we also filt...

how to assign assignment rule in existing VITs

Hi, I created a new assignment rule (Server Group) for vulnerable items to assign them to a particular group. However, existing vulnerable items are currently being assigned to a different group by an existing assignment rule (Support CI Group). How ...

Has anyone integrated Tenable One into ServiceNow Vulnerability Response?

Tenable One includes Tenable Vulnerability Management (Tenable.io), Tenable Security Center (Tenable.sc), Tenable Web App Scanning (Tenable.was), Tenable Cloud Security (Tenable.cs), Tenable Identity Exposure (Tenable.ad), Tenable Attack Surface Mana...

CI lookup rule : IP_Address

Hi All, we are using vulnerability response and is integrated with Tenable. The integration is done in the past and IP_Address lookup rule is selected to custom and the script is blank.What will be the impact of enabling it to default one?Currently w...

Instead of value is "NULL" it was creating the empty record

Please find the script below. I am trying to insert the "value" field as a "NULL" string, but it is creating an empty record. Does anyone know why the string is being converted into an empty record? Script:var gr = new GlideRecord("sn_ti_observable")...

SecOps - What's New in Xanadu Demo Videos

Hey ServiceNow Community,Today's the day! We've released Xanadu and there are exciting updates for the SecOps solution. Take a look at these short (< 8 mins) but impactful demo videos below to find out more: ServiceNow Xanadu - SecOps Security Inci...

com.glide.communications.httpclient.verify_hostname

If I set the value of property "com.glide.communications.httpclient.verify_hostname" is true, than how I can check the impact of this on outbound integration?

Setup Azure as External OIDC Provider (Authorization Code)

Is there a good step-by-step to follow to setup Azure as an External OIDC Provider (Authorization Code), i want to enable it to interact with ServiceNow APIs. i have only found generic/Auth0 examples on how to setup. i have found this not translating...

Configure the vulnerable item key (include port) by integration

Let’s assume we have two separate Tenable integrations: Tenable 1 and Tenable 2. These integrations ingest different types of data, and we want to enable the 'include port' option only for the Tenable 2 integration. However, since the 'include port' ...

Separate "sn_si.admin" role from "admin"(platform admin) role

We want to separate "sn_si.admin" role from "admin"(platform admin) role.At the same time platform admin users don't want to lose control over support of "Security Incident" application. please let me know what the options are to do it. Thanks!

Forum Posts

Risk assessment

Need bulk deferrals for AVITs, CVITs and CTRs

Any way to add Configuration Item to a Configuration Compliance Remediation Task (CRG)

Verify AWS SNS message's integrity using dynamically loaded SNS X509 certificate

Resolved! Understanding potential duplicate Discovered Items/CI records and Reclassification

Resolved! VR Tenable Calculator configuration in VR

how to assign assignment rule in existing VITs

Has anyone integrated Tenable One into ServiceNow Vulnerability Response?

CI lookup rule : IP_Address

Instead of value is "NULL" it was creating the empty record

SecOps - What's New in Xanadu Demo Videos

com.glide.communications.httpclient.verify_hostname

Setup Azure as External OIDC Provider (Authorization Code)

Configure the vulnerable item key (include port) by integration

Separate "sn_si.admin" role from "admin"(platform admin) role

when creating remediation tasks 'created by' as Se...

Security Incident Response force security incident...

CVR Integration with Cortex

CVE for Windows devices getting matched with Linux...

SIR Architecture or System View Diagram

Metrics for Vulnerability Response

Remediation target status of Target Met

Viewing Vulnerable Item related exception question...

How to handle temporary / ephemeral builds with Vu...

Document templates for VRM tables

Workspace View

Is container VR a prereq to updating to the new Se...

Hi there,I started learning the SecOps fundamental...

Remediation tasks not created when VIT risk rating...

CVIT Bulk Edit