Resolved! Anyone else have their NIST/NVD CVE Only version of the integration fail for the last 48 hours?
Hi all,I have more than one instance where it failed with a "bad json" message. I'm pretty sure nothing changed on our side.Colleen
Forum Posts
Lookup Rule is not working for Application Vulnerability Response
Hi there, We are in Vancouver release and we are using the latest version of the Vulnerability Response plugins. We have an integration with Veracode configured and we are importing Veracode SASTs scans. The OOTB Lookup rule ("Application Name") whic...
Resolved! CI getting created in classes other than Incomp IP identified device, Unclassed H/w and Unmatched CI
Hi All, I have a situation where I see CIs getting created in classes other than Incomplete IP identified device, Unclassed Hardware, and Unmatched CI.My client's requirement is, that the integration should only pick existing CIs from ServiceNow CMDB...
Trial version of Servicenow Security Operations
Hi Team,There is free trial version of Security operations available.If its there can you please explain step by step procedure. Thank you.
Resolved! Servicenow SecOps
Hello Everyone, Could someone please provide the secOps module interview questions? Thanks,Khaleed.
Resolved! Does sn_vul.exception_approver role require any kind of license?
Hi all,I know that we need to get the definitive answer for this question from the SN rep as with all licensing issues. But does anyone have any personal experience as to whether users need to pay for the ability to approve just vulnerability excepti...
Custom Integrations for Qualys Assets
Hello and happy Holidays coming! I am wondering if there are any Qualys users of SecOps out there that might have supplemented the integrations with something that brings over more Asset-related details, including metadata, from the AssetView and/or...
Rest API - how do i retrieve all Vulnerable Items under a remediation task?
Hi, I am having trouble fetching the complete list of Vulnerable Items under a remediation task (aka vulnerability group)?Any help would be appreciatedThanks
What happens to Vulnerable Items without detection
We have recently upgraded from 'Tenable-built' VR integration to the 'ServiceNow-built' Vulnerability Response Integration with Tenable. The latter (ServiceNow-built app) is now using detections but the former (Tenable-built app) is not using it. My ...
Issue with setting default Vulnerability Scanner in VR
Hi all, I am implementing ServiceNow VR and SIR, and in order to submit a vulnerability scan request from SIR I need to have one of my vulnerability scanners set as default. I go to Vulnerability Response > scanners, and I try to set the default valu...
Error in the Microsoft Defender integration with ServiceNow during capability execution
Facing error while getting Machine ID in the Microsoft Defender integration with ServiceNow during the capability execution. The integration is made successfully between MS Defender and ServiceNow. But executing the Capabilities like "Get Host Detail...
Configurable options for Major security incident management
Hi there, I'm currently evaluating MSI and have the following questions: 1. Is it possible to add custom states to Major Security Incident Task [sn_msi_task]? I've tried adding a new state; however, it seems like the Tasks board in MSI workspac...
Resolved! Vancouver upgrade --- set assigned to/assignment group
When a user has a security incident response task, and they update the assigned to/assignment group fields, the form saves but the assigned to and assignment group field are blank and the red mandatory asterisk is visible on the screen. However, the ...
Filtering vulnerable item based on assigned to or assignment group
User has sn_vul.read_all role. When the user accesses the sn_vul_vulnerable_item table, all vulnerabilities can be viewed (including those assigned to others). The requirement is to display only those vulnerable items that are assigned to users or gr...
Zscaler + ServiceNow integration. No way to track who initiated the request
Hi, I was configuring the servicenow integration with zscaler using ootb store app. I was able to successfully setup the integration. The query i have is that I don't see anyway to track who requested the url blocking or removal. No fields on zscal...
