SecOps forum
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Forum Posts

Vulnerability Response Notifications

Hi Team, Can you please explain me the below vulnerability response notifications? I am finding it hard to understand them. Appreciate your efforts and time.

find_real_file.png
Khanna Ji by Tera Guru
  • 1859 Views
  • 7 replies
  • 1 helpfuls

force rebuild user role table

I am about to embark on the task of cleaning up user granted roles directly in some cases and role changes in groups. I will be consolidating down duplicated roles given and removing roles directly given to users. I have seen the behavior of a user n...

twooton by Giga Contributor
  • 1125 Views
  • 4 replies
  • 0 helpfuls

Resolved! SIRT Auto Assignment

Whenever I submit a security incident, it is picking SIRT group as an Assignment Group. Is there a way to change the this group assignment and select something else? Where can I find the setting for it?

James234 by Kilo Contributor
  • 1325 Views
  • 5 replies
  • 0 helpfuls

Resolved! What is the Security Module in SNOW?

Hi, What is the Security Module in SNOW? Why we require the same? Could you please explain in detail. Regards,      

Neha52 by Tera Contributor
  • 2177 Views
  • 3 replies
  • 1 helpfuls

ACL in Update Sets

Hi All, I'd like to raise a small question: If modifying the ACLs require security_admin role; while moving update sets having ACL changes from one instance to another instance, one should have a security_admin role. Please suggest. Thanks, Vishal

Vishal2 by Mega Contributor
  • 2691 Views
  • 6 replies
  • 1 helpfuls

Resolved! Where do we set up the User reported Phishing email address?

The docs say that we need to define an email address such as acme+phishing@service-now.com as the forwarding address for the possible phishing emails. https://docs.servicenow.com/bundle/london-security-management/page/product/security-incident-respon...

Steve Quayle by ServiceNow Employee
  • 2155 Views
  • 5 replies
  • 1 helpfuls

Resolved! Get running processes

Referring doc https://docs.servicenow.com/bundle/london-security-management/page/product/security-incident-response-orchestration/task/obtain-WMI-retrieval-workflow.html It says when I add windows/Unix CI, and put incident in analysis state, system a...

Khanna Ji by Tera Guru
  • 2622 Views
  • 5 replies
  • 2 helpfuls

Resolved! Vulnerability Scanner

Can we scan CIs in my CMDB without Qualys or any thrid party vulnerability scanner? Just with my vulnerability base application?

Khanna Ji by Tera Guru
  • 1882 Views
  • 9 replies
  • 4 helpfuls

Resolved! Failed Login Attempts not logged in the user table

When a user attempts to log into our Servicenow instance with incorrect credentials the login.failed event gets triggered however the user never gets locked. The user should be locked out after 3 login attempts.   In the password reset properties the...

Tony Santos1 by Tera Contributor
  • 2864 Views
  • 5 replies
  • 1 helpfuls

How Risk score is calculated? When the below are changed?

How Risk score is calculated? When the below are changed? Business impact on the Affected Users related listBusiness impact on the Affected Services related listBusiness impact on vulnerabilities on the Vulnerable items related list

Sathiz by Kilo Explorer
  • 3062 Views
  • 2 replies
  • 1 helpfuls