Cloud Discovery service account form reference

Xanadu IT Operations Management

Release

xanadu

ft:locale

en-US

ft:publication_title

Xanadu IT Operations Management

ft:clusterId

itom

bundleId

itom

workflow

Technology

Cloud Discovery service account form reference

Release version: Xanadu

Updated August 1, 2024

5 minutes to read

Summarize

Summarized using AI

Summary of Cloud Discovery service account form reference

The Cloud Discovery service account form in the Cloud Discovery Workspace enables ServiceNow customers to configure and manage service accounts for discovering cloud resources across multiple cloud providers. This form captures essential account and credential details specific to each cloud platform, facilitating automated discovery and integration with the ServiceNow Configuration Management Database (CMDB).

Show full answer Show less

Key Features

Multi-Cloud Support: The form supports major cloud providers including Amazon Web Services (AWS), Microsoft Azure, Google Cloud Platform (GCP), IBM Cloud, Oracle Cloud Infrastructure (OCI), OpenStack, Red Hat Virtualization (RHV), and VMware.
Service Account Identification: Each provider’s form section captures the service account or project/subscription identifiers needed for resource discovery.
Credential Management: Customers can add new credentials or select and edit existing ones within the ServiceNow AI Platform to authorize discovery operations securely.
Provider-Specific Fields: The form includes fields unique to each cloud provider, such as IAM roles for AWS, subscription IDs for Azure, project IDs for GCP, compartment IDs for OCI, and URLs/endpoints for cloud services where required.
Event-Driven Discovery Options: For Azure and GCP, the form provides options to enable event-driven discovery (Pull Events), which helps keep the CMDB updated with resource changes.

Practical Use for ServiceNow Customers

ServiceNow customers can use this form to configure discovery credentials and parameters accurately for each cloud environment.
The form ensures that discovery is authorized and targeted to the correct account, project, or subscription, reducing configuration errors.
By enabling event-driven discovery options where available, customers can maintain a more current and accurate CMDB reflecting cloud resource changes.
The inclusion of cloud-specific fields such as URLs for regional endpoints or IAM roles supports discovery in specialized environments like AWS GovCloud or Azure management groups.

Expected Outcomes

Accurate and efficient discovery of cloud resources across multiple cloud providers using properly configured service accounts.
Improved CMDB data quality through integration with event-driven discovery mechanisms where supported.
Centralized credential management within the ServiceNow AI Platform for streamlined administration and secure access control.
Enhanced ability to manage hybrid and multi-cloud environments by standardizing service account configurations within ServiceNow.

The Cloud Discovery service account form displays detailed information about the selected cloud provider. The Cloud Discovery service account form is available in the Cloud Discovery Workspace.

Table 1. Amazon Web Services (AWS) service account fields
Field	Description
Service Account	Name of the service account whose resources you want to discover. This field appears only when the Existing service account option is selected.
Name	Name of the service account whose resources you want to discover.
Account ID	12-digit Identity and Access Management (IAM) account number.
Credentials	Name of the credentials that you have created for AWS discovery. Leave the field empty if the account is a member account of an AWS organization and you've configured the associated management account with a credential. To add a credential in the ServiceNow AI Platform, select the Add new credentials icon () and fill in the fields. If required, you can select an existing credential and then edit it by selecting the Edit credentials icon ().
URL	URL of the datacenter. Enter this field only for the AWS GovCloud (US) and AWS China region accounts.
Access role name	Name of the IAM role created for the trusting account.
Select account for access	Name of the trusted account. Configure this field only for accounts that don't use permanent AWS credentials, and rely on IAM roles for access.

Table 2. Microsoft Azure service account fields
Field	Description
Service Account	Name of the service account whose resources you want to discover. This field appears only when the Existing service account option is selected.
Name	Microsoft Azure subscription name.
Subscription ID/Management group ID	Microsoft Azure subscription ID.
Credentials	Name of the credentials that you have created for Microsoft Azure discovery. To add a credential in the ServiceNow AI Platform, select the Add new credentials icon () and fill in the fields. If required, you can select an existing credential and then edit it by selecting the Edit credentials icon ().
URL	Leave this field empty.
Pull Events	Option to enable the ServiceNow AI Platform to collect resource change information from the Microsoft Azure cloud. The ServiceNow AI Platform uses the resource change information to update the Configuration Management Database (CMDB). For more information on the supported Azure resource types, see Azure change processing. If you select the Pull Events check-box for a management group, the ServiceNow AI Platform enables Azure change processing for all the subscriptions in the management group.

Table 3. Google Cloud Platform service account fields
Field	Description
Service Account	Project ID of the Google Cloud Platform (GCP) project whose resources you want to discover. This field appears only when the Existing service account option is selected.
Name	Project ID of the Google Cloud Platform (GCP) project.
Project ID/Folder ID	Project ID of the Google project.
Credentials	Name of the credentials that you have created for GCP discovery. To add a credential in the ServiceNow AI Platform, select the Add new credentials icon () and fill in the fields. If required, you can select an existing credential and then edit it by selecting the Edit credentials icon ().
Pull Events	Option to enable the ServiceNow® event-driven discovery to collect events for the resource types hosted in the Google Project LDCs.

Table 4. IBM service account fields
Field	Description
Service Account	Name of the service account whose resources you want to discover. This field appears only when the Existing service account option is selected.
Name	Name of the service account.
Credentials	Name of the credentials that you have created for IBM discovery. To add a credential in the ServiceNow AI Platform, select the Add new credentials icon () and fill in the fields. If required, you can select an existing credential and then edit it by selecting the Edit credentials icon ().
Account ID	IBM software user number that the instance should use to access the IBM Cloud Console.

Table 5. Oracle Cloud Infrastructure service account fields
Field	Description
Service Account	Name of the service account whose resources you want to discover. This field appears only when the Existing service account option is selected.
Name	Name of the service account.
Account ID	OCI Compartment id.
Credentials	Name of the credentials that you have created for Oracle Cloud Infrastructure (OCI) discovery. To add a credential in the ServiceNow AI Platform, select the Add new credentials icon () and fill in the fields. If required, you can select an existing credential and then edit it by selecting the Edit credentials icon ().
Datacenter URL	Datacenter value. For example, https://$service.ap-mumbai-1.oraclecloud.com

Table 6. OpenStack service account fields
Field	Description
Service Account	Name of the service account whose resources you want to discover. This field appears only when the Existing service account option is selected.
Name	Name of the service account.
OpenStack account ID	Project ID of the OpenStack Project to be discovered.
Account credentials	Name of the credentials that you have created for OpenStack discovery. To add a credential in the ServiceNow AI Platform, select the Add new credentials icon () and fill in the fields. If required, you can select an existing credential and then edit it by selecting the Edit credentials icon ().
Cloud URL	OpenStack identity service endpoint. For example: https://<openstack dns>:<port>.

Table 7. Red Hat Virtualization (RHV) service account fields
Field	Description
Service account	Name of the service account whose resources you want to discover. This field appears only when the Existing service account option is selected.
Name	Name of the service account.
Manager URL	The account ID to which this credential belongs. Specify the API url of the RHV-M instance, including the port. For example, https://my-manager-instance.com:443.
Manager credentials	Name of the credentials that you have created for RHV discovery. To add a credential in the ServiceNow AI Platform, select the Add new credentials icon () and fill in the fields. If required, you can select an existing credential and then edit it by selecting the Edit credentials icon ().

Table 8. VMware service account fields
Field	Description
Service Account	Name of the service account whose resources you want to discover. This field appears only when the Existing service account option is selected.
Name	Name of the service account.
UUID	Universal Unique Identifier (UUID) of the instance. To access the UUID, do the following: Open the Managed Object Browser (MOB) for the vCenter. Select Content > About. Paste the value of the instance UUID property in this field.
Credentials	Name of the credentials that you have created for VMware discovery. To add a credential in the ServiceNow AI Platform, select the Add new credentials icon () and fill in the fields. If required, you can select an existing credential and then edit it by selecting the Edit credentials icon ().
URL	Full URL of the vCenter.