| Info |
|---|
This article explains how to set up the Cloudaware application in ServiceNow. Cloudaware extends the Configuration Item table in ServiceNow with additional cloud inventory data. |
...
| Expand | ||||
|---|---|---|---|---|
| ||||
|
...
Configure Cloudaware application in ServiceNow
1. Set up the ServiceNow-to-Google integration for authorization.
Cloudaware provides a Service Account private key. Use this key to set up ServiceNow to Google integration. Refer to this video guide to set up Google as a JWT Provider. JWT Provider will be used as Connection when configuring the data update workflow.
Set up ServiceNow-to-Google integration
using credentials provided by Cloudaware. JWT Provider will be used as Connection when configuring the data update workflow.Сreate JWT key(1) & JWT certificate(2) in ServiceNow:
All -> System oAuth -> JWT keys -> New
Set up a meaningful name, e.g. Google JWT Key
(signing key = password (мы даем),
create a new signing keystore:
Set up a meaningful name, e.g. Google JWT Certificate -> select ‘java key store’ from the list, use the same password in key store password, attach the previously downloaded certificate -> Submit (the pop-up window closes)
Go back to adding a JWT key: in Signing Keystore select the created keystore (click the certificate name ‘Google JWT Certificate’ in the the pop-up window) -> Submit.Сreate JWT Provider in ServiceNow:
All -> System oAuth -> JWT providers -> New
Set up a meaningful name, e.g. Google JWT Provider
in Signing configuration, select the created key (Google JWT Key) from the list
Click the name of the provider. Select the tab Standard Claims. Set the following values for:
(iss - service account email address provided by Cloudaware
sub - service account email address provided by Cloudaware
aud - token https://oauth2.googleapis.com/token
-> updateСreate Application Registry in ServiceNow:
All -> System oAuth -> Application Registry -> New
Select Connect to a third party OAuth Provider from the list
Client ID: notneeded
Client secret: notneeded
Token: click the lock icon to insert https://oauth2.googleapis.com/token -> click the lock icon again to save
Default grant type: select JWT Bearer
Submit
By doing all this, you create an oAuth Entity Profile (ignore errors)
Drill into the profile (by clicking its name)
In JWT Provider select Google JWT Provider from the list
Click Update.Go back to JWT Provider -> select Google JWT Provider from the list. Select the tab Custom Claims. Click plus sign to add a new claim: scope - string - https://www.googleapis.com/auth/bigqueryAll -> type Connections & Credentials (under IntegrationsHub). Select Credentials. New
Select OAuth 2.0 Credentials from the list. For the oAuth Entity Profile, select Google JWT Profile created earlier. Save.
Click Get OAuth Token to test the connection.Go to Connections & Credentials Aliases. New. Set the name as Google JWT and save. In the table below, click New to create a HTTP(s) Connection. For the Credential, select JWT Credentials record created earlier.
Check the box URL builder - in Host input the link http://bigquery.googleapis.com; in Base path input the link - /bigquery/v2/
Save.
Install the Cloudaware application
...
2.1. Go to All → Retrieved Update Sets:
...
| Note |
|---|
Please allow some time for the application to be created. |
Configure the workflow
1. Go to All → Workflow Studio:
...