Hello! I have been using the Microsoft Defender Endpoint plugin for the Security Incident Response application, I am using it to create IoC in the MDE.My question was if there is a way to change the status of the alerts that the MDE generates automat...
Is tenable.sc can be integrated with Servicenow configuration compliance application, if there are any custom integration doc regarding this would be helpful?
Hello ServiceNow Community! I am doing an integration of ServiceNow VR with Qualys, and encountered an issue where KB import works fine, but Host import fails with error 400 (Bad Request).We've dug through all the logs we could find, but the most des...
Hi Everyone, Greetings, While exploring the plugins available in the ServiceNow store concerning the vulnerability response application, I came across another plugin called "Qualys Core" that appears quite similar to "Qualys Integration for Security ...
Hello All We are receiving some errors on Rescan attempts from ServiceNow, for just some specific IPs. Error code: 999. A virtual or physical scanner appliance is needed As a result of the error message, we have mapped some specific asset groups that...
Hi Everyone, Can we have Remediation Task Rules created for Application Vulnerability Response? Please clarify. Thanks
Step 1: The scheduled job “Evaluate remediation targets” will run daily at 7am EST. It will trigger the remediation targets rule and update the “Remediation Target” Date field, based on the “last_opened” as Sec common system.Step 2: After that, Backg...
Hello experts,I encountered this behavior but I am not sure if this is changes in Washington Version.For both Utah and Vancouver version (based on PDI test), there is no added role for survey_reader when the itil role is added to a user. But in the W...
There is a pop-up message as shown in the attached screenshot that is triggered when the state of the security incident is changed to closed in the Security Incident Response Workspace. I need to modify the trigger condition for this message. However...
Hello Team,I am working on a VR implementation and If I want to assign all VULs to one group, Is it better to use the User Group option to assign to a static group? I created an assignment rule to assign all the VITs to the one group, but when runnin...
I need to insert a record in Incident table through JSON format can anyone help to let it happen??
Vault product documentation and setting up code signing has a documentation around modifying boot-config.yaml file to allow or reject incoming messages. Does this only work if Vault plugins are activated? Product docs here - https://docs.servicenow.c...
Is it possible to lock down an individual security incident ticket to the assignee and their manager to view and edit only? For example, if we had a checkbox to tick as "confidential", it would then lock it down to just the assignee and manager to vi...
Here's a mindmap I've made, breaking down all of the many tables that come along with the baseline ServiceNow Vulnerability Response offering. My hope is that this provides value to ServiceNow developers and implementers new to the Security Operation...
I need all the detail about how to configure integration between ServiceNow and QRADAR (IBM). Please provide the specifics of steps after the QRADAR plugin is installed. Thanks for all the help.
