Focus

SaaS Security Administrator's Guide

Link SSPM to a ServiceNow Instance

Table of Contents

Link SSPM to a ServiceNow Instance

Link SSPM to an instance of the ServiceNow issue tracking system to create tickets in ServiceNow from SSPM.

If you are using the ServiceNow issue tracking system to manage your team's tasks, you can link SSPM to a ServiceNow instance. This link enables you to create tickets in ServiceNow directly from SSPM. Be aware that SSPM does not automatically create tickets in ServiceNow. Linking SSPM to a ServiceNow instance only enables you to explicitly create a ticket from within SSPM.

SSPM links to your ServiceNow instance through OAuth 2.0 authorization. To enable OAuth 2.0 authorization, you first register an OAuth 2.0 integration application in ServiceNow. You can then link to the ServiceNow instance by supplying SSPM with your ServiceNow instance URL and the application credentials for your OAuth 2.0 application. This OAuth 2.0 application can be the same OAuth 2.0 application that you use to connect SSPM to ServiceNow for configuration scans. However, be aware that SSPM uses different redirect URLs depending on whether you are onboarding ServiceNow for configuration scans or linking to ServiceNow for ticketing. Your OAuth 2.0 integration application can specify both of these redirect URLs.

To create an OAuth 2.0 application for ticketing, follow the instructions for onboarding ServiceNow for configuration scans. In your OAuth 2.0 application, make sure that you include the redirect URL for ticketing.

If a ServiceNow instance was already onboarded for configuration scans, you can link to that ServiceNow instance using the same OAuth 2.0 application that was already created. However, you will need the application credentials of the OAuth 2.0 application, and you will need to make sure that the OAuth 2.0 application includes the redirect URL for ticketing. Contact the administrator who created the OAuth 2.0 application for this information and to verify that the redirect URL for ticketing is included.

If you are a ServiceNow administrator and can edit the OAuth 2.0 application, complete the following steps to get the application credentials and to verify that the redirect URL for ticketing is included.
1. From SSPM, get the redirect URL for ticketing. To get this information, you will begin the procedure for linking SSPM to ServiceNow for ticketing, but you will not complete the procedure.
  Select SaaS SecuritySettings Workflow Ticketing Settings.
  Add Link for ServiceNow.
  The login page for linking to a ServiceNow instance is displayed. The Redirect URL field displays the redirect URL value.
2. Get the application credentials and verify that the OAuth 2.0 application contains the redirect URL.
  Log in to ServiceNow as an administrator.
  Navigate to the Application Registries page (System OAuth Application Registry).
  From the list of application registries, open the OAuth 2.0 application.
  Copy the Client ID and Client Secret into a text file. You will need this information to link to the ServiceNow instance.
  Check the Redirect URL field to see if it includes the redirect URL for ticketing. If necessary, add the redirect URL for ticketing to the Redirect URL field. Do not remove the existing redirect URL for configuration scans. Separate the two URLs with a comma.
  Update to save your changes.
Select SaaS SecuritySettings Workflow Ticketing Settings.
Add Link for ServiceNow.
Log in with Credentials.
On the login page, enter your Instance URL and the application credentials (Client ID and Client Secret) and Connect.

SSPM redirects you to the ServiceNow login page.
Log in using your ServiceNow account.

ServiceNow displays a consent form that details the access permissions that SSPM requires.
Review the consent form and allow the requested permissions.

Link SSPM to a Jira Instance

Unlink SSPM from a Jira or ServiceNow Instance