ServiceNow - Request Catalog Item per Asset

The ServiceNow - Request Catalog Item per Asset action orders one service cart item from the service catalog for each of the:

• Assets returned by the selected query or assets selected on the relevant asset page.

Required Fields

These fields must be configured to run the Enforcement Set.

• Use stored credentials from ServiceNow adapter - Select this option to use the ServiceNow connected adapter credentials. By default, the first connection is selected.
  • When you select this option, the Select Adapter Connection dropdown is available, and you can choose the adapter connection to use for this Enforcement Action.

📘

Note

To use this option, you must successfully configure a ServiceNow adapter connection.

• SYS ID - The ID of the requested item.

• Compute Node - The Axonius node to use when connecting to the specified host. For more details, see Working with Axonius Compute Nodes.

Additional Fields

These fields are optional.

💡

Connection and Credentials

When Use stored credentials from the adapter is toggled off, some of the connection fields below are required to create the connection, while other fields are optional.

• ServiceNow Domain - The full URL for your ServiceNow instance.

• User Name and Password - To connect to ServiceNow, you need to create a user with action privileges to create and manage assets.

• OAuth Client ID and OAuth Client Secret - The credentials for OAuth-based access to ServiceNow. Refer to OAuth 2.0 with Inbound REST for full details on how to obtain the OAuth Token.

• OAuth Refresh Token - When using the OAuth method of authentication, enter the value of the Refresh Token issued by a ServiceNow instance. This token is used to obtain new access tokens without requiring the user to reauthenticate.

• OAuth Custom Endpoint Path - Specify a custom endpoint path to be used instead of the default oauth_token.do.

• Enable sending OAuth requests as JSON - Enable sending the request in JSON format instead of the standard www-form-urlencoded format.

• Apigee URL - The URL of the domain that the GET request is sent to for acquiring the Apigee token.

• Resource Apigee - The specific resources that the Apigee token is configured to access.

• Verify SSL (optional) - Select whether to verify the SSL certificate of the server against the CA database inside of Axonius. For more details, see SSL Trust & CA Settings.

• HTTPS Proxy (optional) - Connect the adapter to a proxy instead of directly connecting it to the domain.

• Attach CSV on requested item (RITM) instead of on request - If the Send CSV data option is enabled, enabling this option attaches the CSV on the requested item (RITM) instead of on the request itself (REQ).

Request Body Parameters

• Quantity - The number of catalog items to request. Equivalent to sysparm_quantity.

• Additional fields - Name-value pairs of all mandatory cart item variables. Request will fail if required attributes are not specified.

  • API -Product Documentation | ServiceNow - Service Catalog - POST Orders the specified catalog item

    For example:

  {
  "remediation_due_date": "2023-03-14",
   "remediation_risk_rating": "remediation_risk_low",
   "remediation_vulnerability_source": "Tenable",
   "remediation_cve": "CVE-2023-12345",
   "common_comments": "This is a Comment",
   "remediation_short_description": "This is a description",
   "requested_by": "e9846652588cd013a892c6db65422",
   "remediation_assignment_group": "44eb8c11db6bd200d1d6f1fcbf667ee"
   }

APIs

Axonius uses the following API:

• Product Documentation | ServiceNow - General

Required Permissions

• Permission to create requests