Hi, we have created the security tags and set the security tag rule as Category=“Data exposure”. So when a security incident is created it needs to automatically set the security tag to Data exposure. After I created the tag, it set the security tag...
Hello, We're having some difficulty with how the Vulnerability Response module chooses CI. Say our cmdb looks like this: NameClassws-serveraWindows Serverws-serveraVirtual Machine Instancews-serveraStorage Volume When the VI is created it should ma...
Hello, We are using Tenable Module of Vulnerability Response in our SNOW instance. There is an APP called tenable connector that needs to be setup as a pre-requsite. We have a MID-server as well. The MID-server is unable to connect to the Tenable ...
Hello Community, I try to set up Splunk Add-On for ServiceNow. I did needful in Splunk and now when I try to do activate integration in SNow, I get following error: When I check the logs, there's an info that HTTP status code is 404 or 0 except 200. ...
Hi Folks, I was wondering how can we make changes in security incident table and threat intelligence table and capture the same in a common update set? Thanks
Hi,i want to restrict creation of CI's to service now when Qualys Integration is available.
Hi: We are working on a custom integration to create Vulnerability Entries and Vulnerable Items from a Third-Party provider into the Vulnerability Response application. We would like to create a vulnerability group rule based on data we provide to...
Hi, I have a requirement to configure Security Incident Catalogs available under SIR module to Service Portal. Is there any solution or a way to implement this? Kindly help in providing some solutions. Thanks, Gazal Varshney
I wish to add tabs to the Related List for Related Items. I found the UI Script "sn_si.SecurityIncidentConstants" that controls the tabs for "Related Items", but how can I get the information needed to add something to this list? I'm specifically l...
Hello, I am trying to find a way to have the Observables tab/field be auto-populated with information that is imported into the Description field. As it stands, we get numerous alerts imported into SIRs with the Description field populated with a lot...
We want to group our vulnerabilities and only include confirmed vulnerabilities. Is there a way to do this? We are using Qualys as our scanner. Thanks! Eric
Does anyone know what UI Policy/Script Include/Business Rule makes all fields of the SIR read-only when the State is Closed? I'm looking for a way to allow only the sn_si.admin to change the field after the SIR is closed, due to analysts accidentall...
Hi All, All the vulnerable items and groups have been imported when I just enabled Knowledge base even before I setup group rules and assignment rules. Now I want to delete them and rerun the import. Is it fine to do that?
Hi folks, What's is security tags in Secops how it's helpful any use cases or examples Will be appreciated thank you request your help for same Regards satya
Hello Experts, Can anyone help on DDOS in ServiceNow. I am new to that but eager to know . Please guide on this 1. Is this a separate plugin 2. Does it involve additional cost or licensing 3. What is the implementation method or document on this spec...
