ServiceNow - Disable or Remove Assets

ServiceNow -Disable or Remove Assets suspends or removes ServiceNow assets for:

Assets returned by the selected query or assets selected on the relevant asset page.

See Creating Enforcement Sets to learn more about adding Enforcement Actions to Enforcement Sets.

📘
Note

Not all asset types are supported for all Enforcement Actions.

See Actions supported for Activity Logs, Adapters Fetch History, and Asset Investigation modules.

See Actions supported for Vulnerabilities.

See Actions supported for Software.

General Settings

Action name - The name of this Enforcement Action. The system sets a default name. You can change the name.
Configure Dynamic Values (optional) - Toggle on to enter a Dynamic Value statement. See Creating Enforcement Action Dynamic Value Statements to learn more about Dynamic Value statement syntax.

Use stored credentials from ServiceNow Adapter - Select this option to use the ServiceNow connected adapter credentials.
- When you select this option, the Select Adapter Connection drop-down is available, and you can choose which adapter connection to use for this Enforcement Action.

Required Fields

These fields are required to run the Enforcement Action.

Action Choice - Select the action to perform:
- Suspend - Disable the defined assets.
📘
Note
Suspend is only available for user assets.
Remove - Delete the defined assets.
Compute Node - The Axonius node to use when connecting to the specified host. For more details, see Working with Axonius Compute Nodes.

Additional Fields

These fields are optional.

💡
Connection and Credentials

When Use stored credentials from the adapter is toggled off, some of the connection fields below are required to create the connection, while other fields are optional.

ServiceNow Domain - The full URL for your ServiceNow instance.

User Name and Password - To connect to ServiceNow, you need to create a user with action privileges to create and manage assets.

OAuth Client ID and OAuth Client Secret - The credentials for OAuth-based access to ServiceNow. Refer to OAuth 2.0 with Inbound REST for full details on how to obtain the OAuth Token.

OAuth Refresh Token - When using the OAuth method of authentication, enter the value of the Refresh Token issued by a ServiceNow instance. This token is used to obtain new access tokens without requiring the user to reauthenticate.

OAuth Custom Endpoint Path - Specify a custom endpoint path to be used instead of the default oauth_token.do.

Enable sending OAuth requests as JSON - Enable sending the request in JSON format instead of the standard www-form-urlencoded format.

Apigee URL - The URL of the domain that the GET request is sent to for acquiring the Apigee token.

Resource Apigee - The specific resources that the Apigee token is configured to access.

Verify SSL (optional) - Select whether to verify the SSL certificate of the server against the CA database inside of Axonius. For more details, see SSL Trust & CA Settings.

HTTPS Proxy (optional) - Connect the adapter to a proxy instead of directly connecting it to the domain.

Number of Parallel Requests - Specify the number of assets that can be removed or disabled in parallel.
Exclude connections - Assets from the selected connections will not be included in the query results. You can select more than one.
Gateway Name - Select the Gateway through which to connect to perform the action.

Permissions

IdentifyReconcile API - The value supplied in User name must have the 'itil' or 'asset' role to use this API.

For more details about other enforcement actions available, see Action Library.

Updated 4 days ago