Service Graph Connector for AWS release notes

  • Release version: Store
  • Updated June 11, 2026
  • 6 minutes to read
    • Summarize
    Summarized using AI
    This content was generated using new OpenAI-powered functionality. Results are provided on an as is basis and are not guaranteed to be accurate or complete.

    Summary of Service Graph Connector for AWS Release Notes

    The Service Graph Connector for AWS is a ServiceNow application that enables automated discovery and synchronization of AWS cloud resources into the ServiceNow CMDB. The release notes document improvements, new features, and fixes across multiple versions from June 2022 through March 2026. These updates enhance performance, accuracy, scalability, and compliance for AWS resource discovery and relationship mapping, supporting large-scale and multi-account AWS environments.

    Show full answer Show less

    Key Features and Enhancements

    • Expanded AWS Resource Discovery: Support for a wide range of AWS services and resources has been added or improved, including Elastic Kubernetes Service (EKS), Amazon Redshift, Cloud Subnets, Security Groups, DynamoDB, and Cloud Object Storage.
    • Improved CMDB Data Accuracy and Relationships: Enhancements ensure correct population of relationships such as EC2 to Storage Volumes and Availability Zones to Virtual Machines, as well as accurate mapping of attributes like Fully Qualified Domain Names (FQDN) and hostnames.
    • Performance and Scalability: Introduction of resource type-based parallelism, multi-threading for CI deletion, optimized payload handling, and improved SendCommand processing to speed up data collection and reduce load times in large-scale AWS environments.
    • Tag Management: Added support for ingestion and parallel loading of AWS tags for generic and specific cloud resources, improving resource categorization and filtering capabilities.
    • Security and Compliance: Implementation of IMDSv2 support, scoped IAM permissions following least privilege principles, and support for AWS key rotation to enhance security posture.
    • Multi-Account and Multi-Organization Support: Enhancements allow discovery across multiple AWS accounts and organizations with improved handling of shared VPCs, subnets, and service accounts.
    • Diagnostic and Error Handling Improvements: Better logging, diagnostic messages for region configuration errors, and fixes for script errors and infinite loops improve troubleshooting and reliability.

    Fixes and Resolutions

    • Resolved duplicate record creation issues for SQL instances and cloud discovery data.
    • Fixed issues with data source errors, such as the SG-AWS-RunPowerShellScript and Software Inventory imports.
    • Corrected inconsistencies in status fields and relationship mappings, especially for Kubernetes and network interfaces.
    • Addressed performance bottlenecks and errors related to large datasets and payload sizes.
    • Fixed record retirement and credential mapping issues to ensure accurate lifecycle management.

    Practical Impact for ServiceNow Customers

    With these updates, customers can expect more reliable and efficient discovery of their AWS environments into ServiceNow CMDB, supporting better visibility, governance, and operational management of cloud resources. The connector’s enhanced scalability and multi-account support enable enterprise-scale cloud management. Improved tag ingestion and relationship mapping facilitate accurate asset tracking and impact analysis. Security enhancements help maintain compliance with AWS best practices. Overall, these releases help customers maintain an up-to-date, accurate, and comprehensive CMDB reflecting their AWS infrastructure.

    Version history for the Service Graph Connector for AWS application on the ServiceNow Store.

    Important:
    For details on system requirements and family compatibility, view the application listing on the ServiceNow Store website.

    Version history

    Version 2.13.0 - March 2026
    • Changed:
      • The SG-AWS-RunPowerShellScript data source now uses Get-CimInstance commands instead of WMIC for Windows Server 2025 discovery.
      • Resource type-based parallelism is used instead of account-based for parallel loading, improving performance for large-scale environments.
    • Fixed:
      • The CreateServiceNowUser.yml file loads in AWS cloud discovery without script errors.
      • The SG-AWS-Organization pattern correctly retrieves Organization Account details.
      • The AWS-Tags data source handles large datasets.
      • EC2 to Storage Volume relationships are populated correctly in the CMDB.
      • The performance of generic resource import is improved for large data loads.
      • SSM-GetS3Object data collection enables consistent Running Processes refresh on servers.
      • The SG-AWS-EKS-FULL scheduled import job loads all EKS data without transformation errors.
      • Server name is updated when EC2 privateDnsName value changes.
      • The SG-AWS-EKS-FULL job loads EKS data without the "String object would exceed maximum permitted size" error.
      • Service Account is retired correctly during record removal.
      • SgGetInventoryDataSourceUtils definition is now available.
      • The Image-Id datasource no longer has cross-account access by assuming roles.
      • Service Account credential mapping is removed.
      • The performance of the SendCommand datasource is improved.
    Version 2.12.1 - October 2025
    Fixed
    • Duplicate SQL instances: Resolved an issue where duplicate MSFT SQL instances and application CI relationships were created via the SG-AWS integration.
    • Record removal logs: Fixed inconsistent return values that caused undefined counts in the logs generated by the record removal utility.
    • Generic tag SNK: Corrected the Source Native Key (SNK) for generic tag resources.

    Changed: Restricted menu items: Added admin-restricted AWS menu items to the Service Graph Connectors application menu.

    Version 2.11.0 - August 2025
    • New: AWS tag ingestion: Added support for the ingestion of tags for AWS Generic Resources using the SGC-AWS data source.
    • Changed:
      • Updated the sys_id of the YAML on the AWS Create connection page in SGC Central.
      • Enhanced CMDB discovery for numerous AWS classes:
        • Service Account, Cloud Subnet, Cloud Resource, Security Group, Hardware Template, Docker Container, and Docker Images
        • Network, NIC, Images, Storage Mapping, and VM Instance
        • DynamoDB, Endpoint Vnic, IP Address, and Kubernetes Clusters
        • Cloud Gateway, Cloud Hardware Type, Cloud LB, and Cloud Object Storage
        • Availability Zone and Cloud DB
    Version 2.10.1 - May 2025
    • New:
      • Introduced support for Amazon Redshift database.
      • Implemented IMDSv2 support for security compliance.
    • Changed:
      • Improved Server Record Accuracy with IP-based discovery when deep discovery is enabled.
      • Modified the table mappings for the Cloud OS image for improved flexibility in managing cloud OS images.
    • Fixed: Updated the server record to use the server hostname for the name attribute, preventing merge issues caused by IP address reuse.
    Version 2.9.0 - February 2025
    • New:
      • Introduced multi-threading for faster deletion of most Configuration Items (CIs).
      • Optimized oversized payloads to improve performance and reduce loading time.
      • Enhanced SendCommand functionality to automatically populate critical database attributes into corresponding CIs in the CMDB.
      • Aligned with Cloud Discovery for comprehensive hardware type information in the CMDB.
    • Changed: Upgraded the netstat command functionality for compatibility with various Linux distributions.
    Version 2.8.0 - October 2024
    New: Addressed the gap for missing life cycle management of configuration items (CIs).
    Version 2.7.1 - September 2024
    Fixed: SGC Central - AWS EKS EC2 resources page was updated.
    Version 2.7.0 - August 2024
    • New:
      • Enabled parallel loading feature for SG-AWS-Tags and SG-AWS-Image-Private data sources.
      • Added relationship between availability zones and virtual machines.
      • Implemented support for VPC and subnet sharing across service accounts.
    • Fixed:
      • Fixed an issue in multi-instance setups where EC2, VPC, or subnet configuration items (CIs) were marked as retired after upgrading the connector to version 2.6.0 or later versions.
      • Added the mapping of the Fully Qualified Domain Name (FQDN) value to the fqdn field.
      • Added an appropriate error message in the diagnostic results when a test fails due to an incorrect AWS region configuration property.
      • Fixed inconsistency between the "State" and "Install Status" fields.
      • Fixed application of the SG-AWS-EC2 post-script changes for the existing multi-instance records.
    Version 2.6.1 - May 2024
    • New:
      • SG-AWS-Software-Inventory data sourcememory improvements
      • Performance improvement for fetching tags
      • The connector now avoids calling the SG-AWS-SendCommanddata source when the details for the S3 buckets are not populated
    • Fixed:
      • FixedHardware consolidation data source functionality for multi-instance connections
      • Fixed the diagnostic tool for testing the S3 bucket setup
      • Fixed empty software names causing partial payload in the SG-AWS-Software-Inventory data source
    Version 2.4.0 - February 2024
    • New:
      • Added support for additional attributes in Cloud organization Unit, Cloud organization, Cloud Service Account, and Account Tags for ITOM Cloud Account Management.
      • Populated reference to "Configuration Item" in the Cloud Mgmt Network Interface [cmdb_ci_nic]table for all VMs.
    • Fixed:
      • Fixed the 'beyond the size limit' issue raised by the Flow Designer action for Software Inventory and EKS.
      • Fixed data inconsistencies for EKS.
    Version 2.3.0 - November 2023
    • New:
      • Added ability to populate the generic cloud resources without CMDB classes to the Cloud Resource [cmdb_ci_cmp_resource] table.
      • Added database deep discovery for virtual machines (VMs) to fetch metadata such as MySQL version numbers for databases in the EC2 instances.
      • Implemented bringing your own license (BYOL) that updates the license type in the Key Value [cmdb_key_value] table to analyze licenses.
      • Optimized deletion strategy.
      • Added support for handling retired CIs in EKS components (pods, services, volumes, and so on.)
      • Scoped IAM permissions and fixed S3 permissions following least privilege principles.
    • Fixed:
      • Fixed the infinite loop issue in the SG-AWS-Software-Inventory data source .
      • Fixed the in-use status from SG-AWS-Network-Interface data source not mapping to the In Use column in the Cloud Mgmt Network Interface [cmdb_ci_nic] table.
    Version 2.2.1 - September 2023
    • Fixed:
      • Populate Name for Kubernetes Namespace records.
      • Fixed the relationship between Cloud Management N/W Interface and virtual machines.
      • If database name isn't set in AWS then use objectid to map name in the Cloud Database.
    Version 2.2.0 - August 2023
    • New:
      • Added Elastic Kubernetes Service (EKS)discovery
      • Added ability to populate EC2 hostname via sendcommand
      • The STS AssumeRole API is now called only for accounts that are associated with the AWS Config aggregator and not for all member accounts
    Version 2.1.0 - July 2023
    Fixed: Issues related to support AWS GovCloud regions.
    Version 2.0.0 - May 2023
    • New:
      • Added support for multi-organization (multi-instance)
      • Single or standalone account support
      • AWS key rotation
      • Server classification
    • Changed: Performance improvement on the deleted resources and the Tag API
    Version 1.6.1 - December 2022
    • Fixed:
      • Handle the throttling error on calling Config and List API.
      • Fix the ListAccounts error when ServiceNow user is created in a designated account.
      • Handle the duplicate records created with cloud discovery.
      • DescribeImage API wasn't handling the large payload.
      • Fixed Software inventory empty import records when the central aggregator isn't setup.
    Version 1.5.0 - August 2022
    • Fixed:
      • Remove designated account dependency on the management account.
      • Added missing CIs attributes.
      • Optimized performance.
    Version 1.4.2 - June 2022
    • New: Get the list of accounts from designated accounts by setting up IAM permissions that are necessary to go to the management account.
    • Fixed:
      • Fixed missing hardware and server attributes
      • Optimized sendCommand processing
    Version 1.4.1 - May 2022
    • New:
      • Add Serial Number in to cmdb_ci_server
      • Add Process Info and relate it to cmdb_ci_server
      • Add TCP connections to cmdb_ci_server
      • Add Cloud Formation Template (CFT) to include SSM Document for SG-AWS-RunShellScript, SG-AWS-RunPowerShellScript
      • Update serviceNow user CFT script to include privileges for SSM SendCommand, S3 access.