In Multi-factor Authentication (MFA), User should Download and install any one of the Authenticator Application for first time. From next login onwards they can use the Authenticator Application or request a verification to be sent via email by click...
Is it possible to customize the Security Incident New UI? Changing form fields or form layout?
Hello Everyone, One of customer do not have Secops module in place and not planning to have it either.However we are being requested to integrate the Rapid7, Carbon Black and Varoins with ServiceNow in order to have events sent to ServiceNow and then...
Hi all ,I wanted to try task intelligence for ITSM in my PDI but the required number of incidents needed are 10k.so is there any way I can create or get some demo incidents data.Thanks,
glide.security.url.whitelist - created this system property (snapshot attached) to check its nature of operation but turned out as a fail. When logout from the admin user or a newly created user from the PDI, its not working as expected (enforces val...
Hey all-we have a working Splunk ES integration configured previously by ServiceNow implementers- but the 'source' field is currently populating to the SNow form default of 'phone', and the secops folks want it adjusted to SIEM. instead of changing ...
Hi all, We have around 62000 remediation tasks which all need to be closed. I first tried using "update all" to update their "state" values to "closed completed." However, this times out and only closes around 3000 records before timing out. So next,...
Hi, I have a second question related to risk calculator.As per my understanding and the knowledge I have from community, when a new Vulnerable item got created (from integration), a Business rule "Calculate risk score" got executed and the risk ratin...
My Configuration Compliance integration with Qualys is pulling in test results with the CI's but it is not populating the Technology field or the technology field is filled in with a value of random numbers and letters. Please see image below which s...
Hi All, happy to share we've released a Rapid7 InsightVM on Demand course today in Now Learning as part of the VR Learning Bytes series. This course walks you through all the available integrations and also throws light on where all of the data sit...
I am using the Security Incident Splunk Integration to do an Email sighting search and while it does find the result, it is not updating the Affected Users list. In fact it is doing the opposite. It is adding nonexistent users/email addresses to the ...
Hi We have one Remediation Task rule which will create a Remediation Task for an assignment group as long as that assignment group is not empty on the VIT. We have had some issues where the wrong team has been assigned so these VIT's have been manual...
Whether ServiceNow have an On-promise instance? If yes, what is the actual use of those instances in infrastructure security to perform Password2? @Tony Chatfield1
Hi, team, a large customer is challenging me on the technical and business benefits of the Splunk plugin vs. just using event management to create security incidents. Anyone have any concrete evidence that the plugin is "better?"
