Skip to content

Interpres Application - ServiceNow

  • Type: Business Services
  • Vendor: ServiceNow

The ServiceNow app ingests assets from ServiceNow CMDB, alerts from ServiceNow incidents, and detection from ServiceNow audit rules.

Vendor setup

In ServiceNow, navigate to All->User->New to create a new service account for API connection. The following roles are required for the ServiceNow service account:

  • itil
  • oauth_user
  • oauth_admin
  • rest_api_explorer
  • rest_service

Follow the instruction from ServiceNow documentation (https://github.com/ServiceNow/PySNC/blob/main/docs/user/authentication.rst#oauth2---password-grant-flow) to create an OAuth API endpoint for external clients. Note down the client id and client secret for OAuth authentication.

App Configuration

App Parameters:

  • username: Username of the API service account
  • password: Password of the API service account
  • client_id: The client_id generated during OAuth API endpoint creation
  • client_secret: The client_secret generated during OAuth API endpoint creation
  • base_url: The URL to the ServiceNow environment

App Validation

Check there is connectivity (green light) in the integration created.

Implemented Actions

  • Get Alerts: Gets the latest alerts from ServiceNow incidents.

  • Get Detections: Returns a list of detections from ServiceNow audit rules.

  • Get Assets: Returns a list of assets from ServiceNow CMDB.