Creating your own API connectors in Security Posture Control

  • Release version: Xanadu
  • Updated November 20, 2025
  • 2 minutes to read
    • Summarize
    Summarized using AI
    This content was generated using new OpenAI-powered functionality. Results are provided on an as is basis and are not guaranteed to be accurate or complete.

    Summary of Creating your own API connectors in Security Posture Control

    The Security Posture Control (SPC) API connector framework allows you to create customized API connectors to integrate with various security tools and import asset data tailored to your organization's needs. This integration helps monitor your security posture and identify assets lacking essential security tools.

    Show full answer Show less

    Key Features

    • A guided, step-by-step process for building connectors.
    • A centralized location for managing all SPC integrations and importing custom data into your CMDB.
    • Monitoring capabilities for published API connectors in the SPC API Integrations tab within the Security Posture Control workspace.

    Prerequisites

    Before creating an API connector, ensure you have the necessary service credentials and API documentation. The following applications and plugins are required:

    • Applications:
      • Security Posture Control API Connectors (snspccxf v2.0.0)
      • Security Posture Control (snsecspccore v7.0.1)
      • Asset Security Posture Management (snseccaasm v5.5.1)
      • Mitigation Controls Monitoring (snsecmitctrl v4.1.4)
      • Integrations Commons for CMDB (sncmdbintutil v2.20.0)
    • Plugin Dependencies:
      • IntegrationHub Action Template - Data Stream (com.glide.hub.actiontype.datastream)

    Roles required for downloading, installing, and activating applications include the admin role for all operations and specific roles for users involved in configuring connectors.

    Next Steps

    To begin, assign the required roles to users who will work with the Connector builder in the Security Posture Control workspace. This setup ensures that your team can effectively create and manage API connectors to enhance your security posture management.

    Create your own Security Posture Control (SPC) API connectors using the connector framework that is included with the application.

    Overview for the connector builder framework

    Benefits

    Create your own SPC API connectors quickly to help you integrate with security tools and import asset data that is based on the unique requirements of your environment. Use imported data to help you monitor your overall security posture and identify assets that are missing key security tools.

    The connector framework includes the following features.

    • A step-by-step process to guide you through the connector builder.
    • A single place to build and maintain all your SPC integrations to import custom data into your CMDB.
    • After you publish them, monitor your API connectors on the SPC API Integrations tab in the Security Posture Control workspace.

    The API connector builder

    You use the Connector builder in the Security Posture Control workspace to create and publish your customized API connectors.

    Prerequisites

    Before you start creating your API connector, you might prefer to set up any credentials for the service (vendor) that you want to implement with and have their API documentation and credentials handy as you work through the Connector builder. See Enter metadata for more information.

    Required applications and plugins

    The following applications and plugins are required.

    For more information about applications in the ServiceNow® Store, see Exploring the ServiceNow Store and downloading and activating applications Download an application from the ServiceNow Store for the first time.
    Note:
    If you're downloading applications to non-production or development instances, it's not necessary to get entitlements.

    Role required: admin for download, installation, and activation of all applications and plugins.

    Table 1. Required Applications
    Application Application ID and version
    Security Posture Control API Connectors sn_spc_cxf v2.0.0
    Security Posture Control sn_sec_spc_core v7.0.1
    Asset Security Posture Management sn_sec_caasm v5.5.1
    Mitigation Controls Monitoring sn_sec_mit_ctrl v4.1.4
    Integrations Commons for CMDB sn_cmdb_int_util v2.20.0
    Table 2. Plugin dependencies
    Plugin Plugin ID
    IntergationHub Action Template - Data Stream com.glide.hub.action_type.datastream

    Required roles

    Role required: admin

    Assign the sn_sec_spc_core.developer role to the users who you want to view and configure SPC API connectors with the Connector builder in the Security Posture Control workspace.

    Assign the sn_spc_cxf.admin role if you want users to configure SPC API connectors with advance scripting with the Connector builder.

    See Install the supported applications for Security Posture Control for information about assigning roles to Security Posture Control groups.