Cloud Discovery service account form reference

  • Release version: Yokohama
  • Updated January 30, 2025
  • 5 minutes to read
    • Summarize
    Summarized using AI
    This content was generated using new OpenAI-powered functionality. Results are provided on an as is basis and are not guaranteed to be accurate or complete.

    Summary of Cloud Discovery service account form reference

    The Cloud Discovery service account form in the Cloud Discovery Workspace enables ServiceNow customers to input and manage detailed information about their cloud provider accounts. This form supports multiple cloud platforms, allowing you to configure service accounts and credentials for discovery of cloud resources. Proper configuration of these fields is essential for accurate cloud resource discovery and integration with the ServiceNow AI Platform.

    Show full answer Show less

    Key Features

    • Multi-cloud support: The form includes tailored fields for various cloud providers including Amazon Web Services (AWS), Microsoft Azure, Google Cloud Platform (GCP), IBM Cloud, Oracle Cloud Infrastructure (OCI), OpenStack, Red Hat Virtualization (RHV), and VMware.
    • Service Account Identification: Each cloud provider section requires specifying the service account or project/subscription ID to identify the scope of resources to be discovered. This field appears when selecting an existing service account.
    • Credential Management: Credentials for each cloud provider discovery are managed within the ServiceNow AI Platform. You can add new credentials or edit existing ones directly from the form to ensure proper authentication.
    • Provider-specific fields: Unique fields such as Account IDs, URLs, IAM roles, subscription IDs, compartment IDs, and UUIDs are required depending on the cloud platform to correctly configure access and discovery scope.
    • Event Pulling Options: For Azure and GCP, options exist to enable event-driven discovery that updates the Configuration Management Database (CMDB) with resource changes, improving data accuracy and timeliness.

    Practical Use for ServiceNow Customers

    • Use the form to define which cloud environments and accounts you want ServiceNow to discover and monitor.
    • Ensure you have created or selected valid credentials within the ServiceNow AI Platform for each cloud provider to enable secure access and data collection.
    • For AWS accounts using IAM roles instead of permanent credentials, configure the access role name and trusted account fields to enable role-based access.
    • Provide URLs only where required, such as AWS GovCloud, AWS China regions, Oracle Cloud datacenter URLs, OpenStack identity endpoints, RHV API URLs, and VMware vCenter URLs.
    • Enable Pull Events for Azure and GCP to allow ServiceNow to automatically track and process resource changes, keeping your CMDB current.

    Expected Outcomes

    By accurately completing the Cloud Discovery service account form for each cloud provider, customers enable ServiceNow to systematically discover cloud resources, manage credentials securely, and maintain an up-to-date CMDB reflecting real-time changes. This leads to improved visibility, governance, and operational efficiency across multi-cloud environments.

    The Cloud Discovery service account form displays detailed information about the selected cloud provider. The Cloud Discovery service account form is available in the Cloud Discovery Workspace.

    Table 1. Amazon Web Services (AWS) service account fields
    Field Description
    Service Account Name of the service account whose resources you want to discover.

    This field appears only when the Existing service account option is selected.
    Name Name of the service account whose resources you want to discover.
    Account ID 12-digit Identity and Access Management (IAM) account number.
    Credentials Name of the credentials that you have created for AWS discovery.

    Leave the field empty if the account is a member account of an AWS organization and you've configured the associated management account with a credential.

    To add a credential in the ServiceNow AI Platform, select the Add new credentials icon (Add new credentials icon.) and fill in the fields. If required, you can select an existing credential and then edit it by selecting the Edit credentials icon (Edit credentials icon.).

    URL URL of the datacenter.

    Enter this field only for the AWS GovCloud (US) and AWS China region accounts.
    Access role name Name of the IAM role created for the trusting account.
    Select account for access Name of the trusted account. Configure this field only for accounts that don't use permanent AWS credentials, and rely on IAM roles for access.
    Table 2. Microsoft Azure service account fields
    Field Description
    Service Account Name of the service account whose resources you want to discover.

    This field appears only when the Existing service account option is selected.
    Name Microsoft Azure subscription name.
    Subscription ID/Management group ID Microsoft Azure subscription ID.
    Credentials Name of the credentials that you have created for Microsoft Azure discovery.

    To add a credential in the ServiceNow AI Platform, select the Add new credentials icon (Add new credentials icon.) and fill in the fields. If required, you can select an existing credential and then edit it by selecting the Edit credentials icon (Edit credentials icon.).

    URL Leave this field empty.
    Pull Events Option to enable the ServiceNow AI Platform to collect resource change information from the Microsoft Azure cloud. The ServiceNow AI Platform uses the resource change information to update the Configuration Management Database (CMDB). For more information on the supported Azure resource types, see Azure change processing.

    If you select the Pull Events check-box for a management group, the ServiceNow AI Platform enables Azure change processing for all the subscriptions in the management group.
    Table 3. Google Cloud Platform service account fields
    Field Description
    Service Account Project ID of the Google Cloud Platform (GCP) project whose resources you want to discover.

    This field appears only when the Existing service account option is selected.
    Name Project ID of the Google Cloud Platform (GCP) project.
    Project ID/Folder ID Project ID of the Google project.
    Credentials Name of the credentials that you have created for GCP discovery.

    To add a credential in the ServiceNow AI Platform, select the Add new credentials icon (Add new credentials icon.) and fill in the fields. If required, you can select an existing credential and then edit it by selecting the Edit credentials icon (Edit credentials icon.).

    Pull Events Option to enable the ServiceNow® event-driven discovery to collect events for the resource types hosted in the Google Project LDCs.
    Table 4. IBM service account fields
    Field Description
    Service Account Name of the service account whose resources you want to discover.

    This field appears only when the Existing service account option is selected.
    Name Name of the service account.
    Credentials Name of the credentials that you have created for IBM discovery.

    To add a credential in the ServiceNow AI Platform, select the Add new credentials icon (Add new credentials icon.) and fill in the fields. If required, you can select an existing credential and then edit it by selecting the Edit credentials icon (Edit credentials icon.).

    Account ID IBM software user number that the instance should use to access the IBM Cloud Console.
    Table 5. Oracle Cloud Infrastructure service account fields
    Field Description
    Service Account Name of the service account whose resources you want to discover.

    This field appears only when the Existing service account option is selected.
    Name Name of the service account.
    Account ID OCI Compartment id.
    Credentials Name of the credentials that you have created for Oracle Cloud Infrastructure (OCI) discovery.

    To add a credential in the ServiceNow AI Platform, select the Add new credentials icon (Add new credentials icon.) and fill in the fields. If required, you can select an existing credential and then edit it by selecting the Edit credentials icon (Edit credentials icon.).

    Datacenter URL Datacenter value.

    For example, https://$service.ap-mumbai-1.oraclecloud.com
    Table 6. OpenStack service account fields
    Field Description
    Service Account Name of the service account whose resources you want to discover.

    This field appears only when the Existing service account option is selected.
    Name Name of the service account.
    OpenStack account ID Project ID of the OpenStack Project to be discovered.
    Account credentials Name of the credentials that you have created for OpenStack discovery.

    To add a credential in the ServiceNow AI Platform, select the Add new credentials icon (Add new credentials icon.) and fill in the fields. If required, you can select an existing credential and then edit it by selecting the Edit credentials icon (Edit credentials icon.).

    Cloud URL OpenStack identity service endpoint.

    For example: https://<openstack dns>:<port>.
    Table 7. Red Hat Virtualization (RHV) service account fields
    Field Description
    Service account Name of the service account whose resources you want to discover.

    This field appears only when the Existing service account option is selected.
    Name Name of the service account.
    Manager URL The account ID to which this credential belongs. Specify the API url of the RHV-M instance, including the port. For example, https://my-manager-instance.com:443.
    Manager credentials Name of the credentials that you have created for RHV discovery.

    To add a credential in the ServiceNow AI Platform, select the Add new credentials icon (Add new credentials icon.) and fill in the fields. If required, you can select an existing credential and then edit it by selecting the Edit credentials icon (Edit credentials icon.).

    Table 8. VMware service account fields
    Field Description
    Service Account Name of the service account whose resources you want to discover.

    This field appears only when the Existing service account option is selected.
    Name Name of the service account.
    UUID Universal Unique Identifier (UUID) of the instance.
    To access the UUID, do the following:
    1. Open the Managed Object Browser (MOB) for the vCenter.
    2. Select Content > About.
    3. Paste the value of the instance UUID property in this field.
    Credentials Name of the credentials that you have created for VMware discovery.

    To add a credential in the ServiceNow AI Platform, select the Add new credentials icon (Add new credentials icon.) and fill in the fields. If required, you can select an existing credential and then edit it by selecting the Edit credentials icon (Edit credentials icon.).

    URL Full URL of the vCenter.