ServiceNow (outbound integration)

Integrate Identity Security Posture Management (ISPM) with your ServiceNow instance to automatically create incidents in ServiceNow based on security issues detected by ISPM.

The integration requires creating a dedicated user account (service account) in ServiceNow with specific roles that grant ISPM the necessary permissions. For security and manageability, it's essential to create a dedicated service account for this integration rather than using an existing user's account.

Configure a dedicated service account

Create a dedicated service account

  1. Sign in to your ServiceNow instance with an account that has administrative privileges, such as an admin or user_admin role.

  2. From the left-side navigation filter, click All, and then enter Users.

  3. In the User Administration module, click Users.

  4. Click New and enter the following details:

    • User ID: Enter a descriptive name. For example: okta.ispm.integration

    • First name: Okta

    • Last name: ISPM integration

  5. Select the Active and Web service access only checkboxes.

  6. Clear the selection for Password needs reset.

  7. Click Submit to create the account.

  8. Search for the account that you created and select it.

  9. Click Set Password and enter a password.

  10. Click Save Password.

Assign roles

  1. On the service account's page, scroll to the related lists and click Roles.

  2. Click Edit...

  3. In the Collection slush bucket, search for the itil and personalize roles and add them to the Roles List.

  4. Click Save.

Share the parameters with ISPM

  1. In the ISPM console, go to Settings Outbound integrations.

  2. Select Servicenow.

  3. Enter the following parameters:

    • Integration name: Enter a name for this integration.

    • Instance URL: Enter your full ServiceNow instance URL. For example, https://your-company.service-now.com.

    • Username: The user ID of the service account you created earlier. For example, okta.ispm.integration.

    • Password: The password you set for the service account.

  4. Click Add Integration.

  5. Once the test is successful, click Continue mapping to map the ISPM issues payload to the ServiceNow incident fields on your ServiceNow instance.

  6. Click Add mapping. You can edit the mapping at any time.

  7. Click Add automation.

  8. Select the issues for which ISPM should trigger alerts for you. You can modify the alerts and the issues at any time.

  9. Click Add automation.