Vault product documentation and setting up code signing has a documentation around modifying boot-config.yaml file to allow or reject incoming messages. Does this only work if Vault plugins are activated? Product docs here - https://docs.servicenow.c...
Is it possible to lock down an individual security incident ticket to the assignee and their manager to view and edit only? For example, if we had a checkbox to tick as "confidential", it would then lock it down to just the assignee and manager to vi...
Here's a mindmap I've made, breaking down all of the many tables that come along with the baseline ServiceNow Vulnerability Response offering. My hope is that this provides value to ServiceNow developers and implementers new to the Security Operation...
I need all the detail about how to configure integration between ServiceNow and QRADAR (IBM). Please provide the specifics of steps after the QRADAR plugin is installed. Thanks for all the help.
Exiciting Announcement: Introducing our latest course - "Security Posture Control Implementation Bootcamp On Demand" Are you ready to take your ServiceNow® Security Operations skills to the next level? We're thrilled to unveil our newest course, ...
I am wondering how the Exception Questionnaire in Vulnerability Response is useful for approvers/where the answers can be found? I know the metric results and assessment instance questions are linked to the state change approval record, but they aren...
Hi All, I am using Tenable.sc for my client and I see the rescan does not work at all and we get the following error message:An error occurred while initiating the rescan. Attributes such as repository_id or family_id might be missing. When I click ...
Im trying to apply a machine_filter for importing machines from Microsoft TVM in VR. The filters the machines being imported as CIs, but doesn not filter the vulnerabilities on machines, so we end up with a lot of vulnerabilities that we do not want ...
Could someone please guide me on how I can "delete" or "deactivate" a Remediation Effort? It seems according to ACLs, no one can delete an effort, even Admins. But it appears there should be a way to deactivate one, but it is all grayed out. Are th...
Is there a way to setup email notifications for when incident tasks are opened and assigned to a particular group or person, so they know they have a task assigned? Oops, wrong forum, sorry, not sure how to delete
Hi ServiceNow Community,We are in the middle of implementing a new VR instance for a customer using the Tenable Vulnerability Integration plugin for both Tenable.io and Tenable.sc. How would I be able to access the 'Patch Published' field from Tenabl...
Hey community,In the vulnerability items table there is a field called "Reopened" which is by default a True/False field.I have a ask to make that field show a date when the Vulnerability reopened. Is there a way to achieve this?Thanks in advance
We have various VITs, like for QID-106032 (Apache Log4j 1.X Detected), where in the results there are a dozen or two locations of Log4j jar files. In these instances, each of those locations in owned by a separate application team. Is there a way to...
Hi All, I am currently working through a project to get data from various API's and out into Azure container storage. This involves a runbook in Azure that, on a schedule, pulls data from the various API's and stores this in the Azure blob storage. I...
Got a request in to add new States into Security Incidents. I've been looking to try and add these, but while I can add them to the Choice List, they will not appear in the drop down at any point. Also can't see to add anything to the Process Flow as...
