In the Security Incidents application. I’m looking for a technique on how to restrict access to the records. A user who is currently login can see and edit only records that he assigned to.
What does the "Mark Deprecated" UI Action do on the Test Group (formerly Policy) form? The UI Action is present on both "Active" and "Inactive" Test Groups. Does this UI Action just deactivate the Test Group or is this another action?
Thoughts on the following configuration for incident and problem handling. The tool has been configured so that a major incident can be placed on hold Pending Problem. When you link an Incident to a Problem and set this status, the cause and fix info...
Hi,Our team is looking for an option to reopen a Security Incident which is in closed state. Currently once you close the Security incident you cant reopen or edit any fields. Basically team is looking for an option to edit fields on a security inci...
In Multi-factor Authentication (MFA), User should Download and install any one of the Authenticator Application for first time. From next login onwards they can use the Authenticator Application or request a verification to be sent via email by click...
Is it possible to customize the Security Incident New UI? Changing form fields or form layout?
Hi all ,I wanted to try task intelligence for ITSM in my PDI but the required number of incidents needed are 10k.so is there any way I can create or get some demo incidents data.Thanks,
glide.security.url.whitelist - created this system property (snapshot attached) to check its nature of operation but turned out as a fail. When logout from the admin user or a newly created user from the PDI, its not working as expected (enforces val...
Hey all-we have a working Splunk ES integration configured previously by ServiceNow implementers- but the 'source' field is currently populating to the SNow form default of 'phone', and the secops folks want it adjusted to SIEM. instead of changing ...
Hi all, We have around 62000 remediation tasks which all need to be closed. I first tried using "update all" to update their "state" values to "closed completed." However, this times out and only closes around 3000 records before timing out. So next,...
Hi, I have a second question related to risk calculator.As per my understanding and the knowledge I have from community, when a new Vulnerable item got created (from integration), a Business rule "Calculate risk score" got executed and the risk ratin...
Hi We have one Remediation Task rule which will create a Remediation Task for an assignment group as long as that assignment group is not empty on the VIT. We have had some issues where the wrong team has been assigned so these VIT's have been manual...
Hi, team, a large customer is challenging me on the technical and business benefits of the Splunk plugin vs. just using event management to create security incidents. Anyone have any concrete evidence that the plugin is "better?"
I have a fully working vulnerability response integration with tenable.io. We have a requirement to switch from CVSS 2.0 to CVSS 3.0 for severity calculation. We had changed the settings in Tenable.io from using CVSS 2.0 to CVSS 3.0 for severity and ...
Hi All, I am not able to install Major Security Incident Plugin on my PDI because one of dependent plugin (sn_sp_spoke) needs to be purchased from ServiceNow Store If any one knows how to fix this issue then please help me.
