You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/defender-for-iot/organizations/tutorial-servicenow.md
+9-21Lines changed: 9 additions & 21 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -9,41 +9,29 @@ ms.date: 08/11/2022
9
9
10
10
The Defender for IoT integration with ServiceNow provides a new level of centralized visibility, monitoring, and control for the IoT and OT landscape. These bridged platforms enable automated device visibility and threat management to previously unreachable ICS & IoT devices.
11
11
12
-
The ServiceNow Configuration Management Database (CMDB) is enriched and supplemented with a rich set of device attributes that are pushed by the Defender for IoT platform. This ensures comprehensive and continuous visibility into the device landscape. This visibility lets you monitor and respond from a single-pane-of-glass.
13
-
14
12
A new [Operational Technology Manager](https://store.servicenow.com/sn_appstore_store.do#!/store/application/31eed0f72337201039e2cb0a56bf65ef/1.1.2?referer=%2Fstore%2Fsearch%3Flistingtype%3Dallintegrations%25253Bancillary_app%25253Bcertified_apps%25253Bcontent%25253Bindustry_solution%25253Boem%25253Butility%25253Btemplate%26q%3Doperational%2520technology%2520manager&sl=sh) integration is now available from the ServiceNow store. The new integration streamlines Microsoft Defender for IoT sensor appliances, OT assets, network connections, and vulnerabilities to ServiceNow’s Operational Technology (OT) data model.
15
13
16
-
Please read the ServiceNow supporting links and docs for the ServiceNow terms of service.
17
-
18
14
## ServiceNow integrations with Microsoft Defender for IoT
19
15
20
16
Once you have the Operational Technology Manager application, two new integrations are available:
21
17
22
18
## Service Graph Connector (SGC)
23
19
24
-
Key Features:
25
-
26
-
- Import Microsoft Defender for IoT Sensors into the Network IDS (NIDS) class and take advantage of NIDS metadata assignment capabilities
27
-
- OT Assets and devices detected by sensors with validated NIDS records will be imported and assigned the metadata on the NIDS record automatically.
28
-
- When Manufacturing Process Manager is also installed, sites can be assigned to detected OT assets and access can be restricted to users on a per site basis.
29
-
- Support for importing OT specific attributes including zone and Purdue Model to define the different levels of critical infrastructure.
30
-
- Connection details of detected communication between OT Assets are imported as relationships which can be used to understand the context of any OT asset.
31
-
- Embedded OT Control Modules are created with relationships to the parent OT Control System, which can also be used to understand the context.
32
-
- Data from additional sources like ServiceNow Discovery and Microsoft SCCM can be updated in the multisource CMDB.
33
-
- Sensors located on IT networks (i.e. in datacenters) can be designated as “IT” and appropriate Configuration Item records and relationships can be created.
20
+
Import Microsoft Defender for IoT sensors with additional attributes, including connection details and Purdue model zones, into the Network Intrusion Detection Systems (NIDS) class. Provide visibility into your OT network status and manage it within the ServiceNow application.
34
21
35
22
For more information, please see the [Service Graph Connector (SGC)](https://store.servicenow.com/sn_appstore_store.do#!/store/application/ddd4bf1b53f130104b5cddeeff7b1229) information on the ServiceNow store.
36
23
37
24
## Vulnerability Response (VR)
38
25
39
26
Track and resolve vulnerabilities of your OT assets with the data imported from Defender for IoT into the ServiceNow Operational Technology Vulnerability Response application.
40
27
41
-
- Create vulnerable items (VITs) from the imported data from Defender for IoT for a view of your OT asset vulnerability within the context of the production process
42
-
- Schedule automatic imports of new vulnerabilities
43
-
- VITs can be routed automatically to your teams for remediation (when used with the Service Graph Connector Integration)
44
-
- Automatically close "resolved" VITs
45
-
46
28
For more information, please see the [Vulnerability Response (VR)](https://store.servicenow.com/sn_appstore_store.do#!/store/application/463a7907c3313010985a1b2d3640dd7e) information on the ServiceNow store.
47
29
48
-
> [!NOTE]
49
-
> Microsoft Defender for IoT's legacy ServiceNow integration [legacy ServiceNow integration](integrations/service-now-legacy.md) is not affected by the new integrations and Microsoft will continue supporting it.
30
+
Please read the ServiceNow supporting links and documentation for the ServiceNow terms of service.
31
+
32
+
## Next steps
33
+
34
+
For more information, please see the ServiceNow store:
0 commit comments