Hey everybody.We are investigating the best way to allow a user with the Remediation Owner role to be able to create a custom Remediation Task without just opening everything up and giving everybody the write_all role. Based on the ACLs and UI Butto...
Hi All,I created a new response task status called "Not Applicable" that has to take in consideration when closing the related security incident.Actually, You can close a security incident only when all response tasks are completed but i want to clo...
Setting up the DLP Incident Response integration with Microsoft using Azure Storage and the Product Documentation only mentioned storing the data and deleting the data on the deletion of the DLP Incident in ServiceNowStore the matching content of eac...
Hello everyone,I have a requirement , to change the workflow of Vulnerable Item State Approval , when 1st approval is rejected , move to the next one and when approved just mark it as approved. I have inserted the logic and the scripts to populate th...
I have done many Vulnerability Response implementations for clients and majority of them do not use the Application Vulnerability Response module. I have attempted to "hide" this module within the Application Navigator by setting the Application Menu...
One of our business partners is looking for a particular ServiceNow use case: I’m looking to assess the need/interest level of existing ServiceNow customers in ongoing Identity access certification automation. Backdrop: Once workflows are provisioned...
There is a requirement - if user want to change the state of Vulnerable item (in sn_vul_vulnerable_item table) from In review to Awating Implementation, it should ask for approval from the support group of the asset. HIf any member of the support gro...
I want to know the whole process how to integrate servicenow with microsoft defender step by step if anyone works on it please let me know
Has anyone had the issue of the Tenable.sc Open Vulnerabilities Integration not loading open vulnerabilities? I've integrated to our Tenable dev instance and all the other jobs have loaded. For testing purposes, I enabled the fixed vulnerability job ...
Hello, a client has several VIs that have been reopened by the VR System after being Closed so I'd just like to ask about the following scenario that occurred: VI is Deferred by a userVI is Closed (Substate is Fixed) by VR SystemDetection Last Found ...
Hi All,In our environment at below cases , the VR system changing the state of the VITs automatically:1. When the VITs are moved from deferred to open state it's getting reopened by the VR system user instead of the scanner , before the inbound to op...
Hi everyone i have an issue using the process designer automation ... I am working with a Securtiy incident (SIR) by the Workspace using a playbook , i need a process automation activity that let's the user manual update the category field and sub ca...
We are using Record producer to generate security incident tickets. when the SIR generated the error msg show: "Read Operation on column task.short_description from scope Global was denied because the source could not be found. Please contact applic...
Hello, I understand that if a CI is duplicated in the CMDB when the CI Lookup Rules find a match they will pair with the most recently created CI. I was wondering if it was possible for it to pair with the actual CI the lookup rules identified (even ...
