Overview
Once setup, our service now integration will export security issues to your instance as rows in the sn_vul_app_vulnerable_item
table for the Vulnerability Response plugin.
To authenticate to your instance, we will use the credentials of a given user; We advise to create a new user specific to Data Theorem in your instance.
Setting up an integration
Setting the integration up can be done via https://securetheorem.com/devsecops/v2/integrations/servicenow/. You can also find it in the devsecops page.
Once you get on this page, you can start setting up your integration by clicking on the “Configure Service Now Integration” button.
The portal will ask you for:
An integration name, which can be any name you want for your integration;
The URL to your instance;
The name of the user that will be used to authenticate to your instance;
The password of the user that will be used to authenticate to your instance;
The settings for auto export of policy violations. These will dictate which issues are going to be automatically exported on your instance.
Once it is done and you click submit, you will see your new integration in the Service Now Integration page.
Once it is setup, issues will be exported to your instance as application vulnerable items: