Built something you're proud of? Tell the story. A quick G2 review of App Engine or Build Agent helps other developers see what's possible on ServiceNow. Share your experience.

How to update the FQDN rule ?

kiran kumar m1
Tera Contributor

a week ago

 

FQDN Matching Enhancement
I want to update the FQDN matching rule so it can handle variations where “.ad.” may or may not be present in the domain.
For example, the rule should be able to match:

  • server01.domain.com
  • server01.ad.domain.com
    even if only one of these formats exists in either Tenable or the CMDB.

What is the best way to adjust the identification/matching rule to support this kind of flexible comparison?

  • IP Address Not Matching
    I’ve also noticed cases where Tenable sends an IP address that already exists in the CMDB, but the CI is still not being matched correctly.

    Any suggestions on where to modify these rules ?

 

0 Helpfuls
  • 262 Views
1 REPLY 1

Aaron Molenaar
Mega Guru

a week ago

We worked around this situation (and also where the vulnerability scanner returns FQDN for both name and FQDN values) by creating a scripted rule that split the FQDN on '.' and used the first value in the array (the name) to lookup against the CMDB. This increased our matching in these scenarios significantly. 

0 Helpfuls