I have created a custom checkbox in test table and also added ACL for that field but only the sn_vulc_write role access to it but still i was not able to edit the checkbox i was getting security constraint error message, Then I have edited table leve...
We are trying to sanitze feedback from web page, that is comming into a Comment field (string). The documentation mentiones the html_sanitize attribute can be used on all fields to fix that, however still after activating the attribute in dictionary,...
Hi all, I'm trying to integrate Splunk ES with Servicenow. The objective is to let Splunk ES open SIR on SNow and, when the SIR is closed, let it know to Splunk ES. I'm basically following this guide: https://docs.servicenow.com/bundle/orlando-securi...
Interview Questions on SIR ?
The linked CI from a third party scanner (Tenable.io) is imported into the "Discovered Item", but I would like to know how to remove it.The state of the record is "unmatched".The reason is that there is a request from the customer to delete the CI th...
We have a requirement to correlate identified vulnerability with the OWASP Top category. For e.g. While manually creating vulnerability ( pen test) when a specific CWE is selected, if the selected CWE is mapped to one of OWASP Top 10 then the OWASP c...
I'm trying to set up and test the manual rescan for a single VI using the Tenable.io integration with SNow. I have updated the SN w/ Tenable plugin to version 3.0.5 and activated the scheduled integration. When I open the setup assistant for VR I see...
Hi community, Quick question. Which field shows me the Vulnerability age? All I have found in Vulnerable item there is a field called "Age". Is that the correct field for Vulnerability age?
Hi There I'm not able to view Age data in OOTB Database View - sn_vul_impacted_services ( which is a View connecting Vis to the services that have been impacted by the vulnerability ) I am able to see the age for the VIT but the same age value is not...
Hey experts, Is anyone bringing in or ingesting KEV's(Known Exploited Vulnerability) in their Service-Now? We have been tasked to bring this data in so we know which Vulnerabilities have a KEV attached to them. This is the website where they all res...
We have a large number of non-persistent VDI's. This is causing our Discovered Items matching percentage to suffer, what is the Service-Now best approach in handling non-persistent VDI's?Additional notes on how VDI's work:In VDI, a hypervisor segment...
Trying to gain better understanding on what all actions can be, should be, cannot be taken when a VIT is reassigned to a different Assignment Group. I have tried searching for relevant other forum posts and have not yet found one that really covers ...
Hi All, Is there is any possibilities to run the Splunk query from ServiceNow end and get the results in some related list or in work notes section? For example below is the query we use in the splunk end to view the specific event by adding the even...
Hi, I have more than 3000 unmatched Discovered Items ( Incomplete IP Identified Device ). No CI lookup rule was applied to these records. What should I do with this number of Discovered items? Should I change something in the CI lookup rule or add so...
Hi, i want information/Contact details to reachout on Licensing cost and roles required for Application Vulnerability Response Module, in order to operate the module do we require License? if yes kindly share contact details of someone from ServiceNo...
