SecOps forum
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Forum Posts

Resolved! Fixing Detection Keys for Qualys Job settings

I have been working on an early upgrade instance where we get to Rome AND latest updates for Vulnerability Response and the Qualys Integration for Security Operations applications.  Within those updates we are going from v13 VR to v15 which include t...

Joe Kline by Kilo Guru
  • 854 Views
  • 2 replies
  • 2 helpfuls

Resolved! auto-close feature in vulnerable Item table

Hi All,  is auto close feature in  the Vulnerable items will close the VITs which are in deferral State ?.if so on what basic they are closing. Also how to identify which VITs are closed on a particular date and reopened? please suggest and help me. ...

rudra1 by Tera Expert
  • 866 Views
  • 2 replies
  • 1 helpfuls

Discovered Items - Best Practices for handling new devices

Hello everyone, Just wanted to see how everyone handles devices that get added into the CMDB as an Unclassed Hardware.   Looking to see how others are addressing the following situations: Undesired devices in the CMDB are classified as Unclassed Hard...

JGNYSTRS by Giga Contributor
  • 1744 Views
  • 2 replies
  • 1 helpfuls

Resolved! Qualys Integration runs are stuck in "Wait complete" state

Gentlemen, We are using Qualys Integration Module with our Now instance. Since the past cpl of weeks, all the Qualys integration runs are in a state "Wait complete" , even though the substate shows to be "success".   Any idea how to troubleshoot this...

find_real_file.png
Scorpion81 by Mega Expert
  • 2276 Views
  • 3 replies
  • 5 helpfuls

Resolved! What's the purpose of Auto-Close Stale Vulnerable Items ?

Could someone explain the purpose of the Auto-Close Stale Vulnerable Items feature? I thought this was a big win for me on 2 different issues: 1.) CI's that are Decommissioned and thus no longer able to be validated by Qualys as remediated.   2.) Vul...

Scott58 by Kilo Contributor
  • 2157 Views
  • 8 replies
  • 2 helpfuls

Resolved! Can CI lookup rules "find" Unclassed Hardware?

Good morning, I'm trying to understand if CI lookup rules can return an "Unclassed Hardware" item?   Here is the situation: - I have a vulnerability on "somehost.domain.com" - There is a matching CI in the CMDB, but is was just called "somehost" and ...

Christoph4 by Tera Contributor
  • 1779 Views
  • 4 replies
  • 0 helpfuls

Resolved! Reapply CI lookup rules UI action shows 0 records processed

Hello friends, While running UI action named - "Reapply CI Lookup Rules" on Unmatched Discovered Items, its not showing number of records processed. It shows as all counts as 0 such as Processed, 0Updated, etc. Does anyone have idea ? Thanks,Rahul

Resolved! Apply CI Lookup Rules to unmatched discovered items

Hi,  We have some discovered items which are unmatched but we noticed that they could be matched if we either update CI Lookup Rules or the unmatched CI itself. We know that we can reclassify a discovered item to some specific CI class which is good ...

Syed14 by Mega Guru
  • 3401 Views
  • 12 replies
  • 13 helpfuls

How to Allow Group Managers to Manage Group Members?

Dear All, Kindly note I've followed the below guide to give access to the group mangers to add/delete their own group members, but with no luck https://community.servicenow.com/community?id=community_question&sys_id=ed71cb29db98dbc01dcaf3231f961999 I...

find_real_file.png find_real_file.png find_real_file.png find_real_file.png
Yaseen2 by Mega Expert
  • 8773 Views
  • 14 replies
  • 3 helpfuls

Resolved! Splunk Sighting Search

HI, I am running Sighting search for IP Address in Splunk,i am using OOB "Sightings Search Configurations" and i have created same config in splunk as well but i am getting Sighting Search count as 0 in SNOW while in Splunk we are getting results for...

find_real_file.png
Apoorva12 by Giga Contributor
  • 2292 Views
  • 5 replies
  • 2 helpfuls

Resolved! Setting VIT/VUL to Closed/Deferred

Hi SecOps experts, I was just thinking if I set VIT/VUL to Closed/Deferred and if that vulnerability state changes to fixed in Qualys, does that change the state in ServiceNow to closed or fixed or will it be ignored? Wondering how state changes are ...

Khanna Ji by Tera Guru
  • 2231 Views
  • 15 replies
  • 3 helpfuls

Resolved! Error - "ACL Exception Insert Failed due to security constraints"

Hi, I am trying to upload an attachment in the incident table using API. But I am getting below error: status: failure The remote server returned an error: (403) Forbidden. message: Operation Failed detail: ACL Exception Insert Failed due to security...

shubham23 by Giga Contributor
  • 12793 Views
  • 15 replies
  • 8 helpfuls