Versions Compared

Old Version 63

changes.mady.by.user Daria Lebedeva

Saved on

compared with

New Version Current

changes.mady.by.user Daria Lebedeva

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Info

This article explains how to set up configure the Cloudaware ServiceNow application in ServiceNow. Cloudaware extends the Configuration Item table in ServiceNow with additional cloud inventory data.

...

3. Сontact support@cloudaware.com to get credentials required for this integration (Service Account private key & password, the .p12 certificate file, Import Project Id, and Import Dataset Id).

4. Download the .xml file for application installation.

Expand
titleCloudaware Application Installation File

View file
namesys_remote_update_set_eba1804b3bf85e10c240ec1916e45a286911728433319610c71d58273e5c7b37.xml

Configure Cloudaware application in ServiceNow

...

Set up ServiceNow-to-Google integration

1. Set up JWT key(a) & and JWT certificate(b):

a. ) Go to All → System OAuth → JWT Keys.

...

Click New.<...> and fill out the form:

...

WHERE
Name: set up a meaningful name, e.g. Google JWT Key
Signing Key: insert the password provided by Cloudaware notasecret
Signing Keystore: click the magnifier icon (Lookup using list) to create a new signing keystore - see the point b. ) below

b. ) In a pop-up window, click New to create a JWT certificate that will serve as a signing keystore:<…>

...

WHERE
Name: set up a meaningful name, e.g. Google JWT Certificate
Type: select 'Java Key Store' from the list
Key store password: insert the password provided by Cloudaware notasecret

Click the paper clip icon (Manage attachments):

...

Click Choose file to attach the .p12 certificate file provided by Cloudaware. Click Submit.

c. ) Go back to setting up the JWT key. In Signing Keystore, click the magnifier icon (Lookup using list) and click select the certificate name Google JWT Certificate in the a pop-up window.

...

Click Submit.

2. Сreate Set up JWT Provider:.

Go to All → System OAuth → JWT Providers. :

...

Click New.<…> and fill out the form:

...

WHERE
Name: set up a meaningful name, e.g. Google JWT Provider
Signing Configuration: click the magnifier icon (Lookup using list) and select the created key configured Google JWT Key from the list

...

Click on the name of the JWT provider (in this example, Google JWT Provider) to edit settings.

Select the tab 'Standard Claims'. Set Add the following values forclaims:
iss - the service account string - Service Account email address provided by Cloudaware
sub - service account string - Service Account email address provided by Cloudaware
aud - string - https://oauth2.googleapis.com/token <…>

...

Click Update.

3. Сreate Set up Application Registry:

Go to All → System OAuth → Application Registry.

...

Click New → select 'Connect to a third party OAuth Provider' from the list.

<…>

WHERE

Fill out the form:

...

WHERE
Name: set up a meaningful name, e.g. Google JWT
Client ID: set up as notneeded
Client secret: set up as notneeded
Default Grant type: select 'JWT Bearer' from the list
Token: click the lock icon to insert https://oauth2.googleapis.com/token → click the lock icon again to save.
Default grant type: select JWT Bearer
Refresh Token Lifespan: 10

Click Submit.

By doing all this, you create an oAuth Entity Profile (ignore errors)
Drill into the profile (by clicking its name)
In JWT Provider select Click on the name of OAuth Entity Profile (in this example, Google JWT default_profile) to edit settings:

...

Next to the JWT Provider, click the magnifier icon (Lookup using list) and select the Google JWT Provider from the list.

Click Update.

4. Go back to JWT Provider -> select Providers. Select the configured Google JWT Provider from the list.

Select the tab 'Custom Claims'. Click plus sign to add Add a new claim: scope - string - https://www.googleapis.com/auth/bigqueryAll -> type .readonly

...

Click Update.

5. Set up Credentials.

Go to AllConnections & Credentials (under IntegrationsHub). Select Credentials. New
Select OAuth

...

Click New → select 'Auth 2.0 Credentials' from the list. For the oAuth Entity Profile, select Google JWT Profile created earlier. Save. Fill out the form:

...

WHERE
Name: set up a meaningful name, e.g. Google JWT Credentials
OAuth Entity Profile: select the configured OAuth Entity Profile (in this example, Google JWT default_profile)

Click Update.
Click Get OAuth Token to test the connection.

Go to AllConnections & Credentials Aliases. Click New.

Set the name alias as Google JWT and save it by right-clicking on the upper grey menu.

...

In the table section that appears below, click New to create a HTTP(s) Connection. For the Credential, select JWT Credentials record created earlier.

...

Fill out the form:

...

WHERE
Name: set up a meaningful name, e.g. Google JWT Connection
Credential: select Google JWT Credentials from the list
Check the box 'URL builder - in Host input '. Insert the link http://bigquery.googleapis.com; in Base path input the link  - in 'Host'; insert /bigquery/v2/
Save in 'Base path’.

Click Submit.

Install the Cloudaware application

2.1. Go to All → Retrieved Update Sets:

...

2.2. Click the link Import Update Set from XML.

...

2.3. Choose the .xml file downloaded before. Click Upload.

...

2.4. Select the created application.

...

2.5. Click Preview Update Set.

...

2.6. Click Commit Update Set to install the application.

...

2. Open 'Flows'. Select the flow Initial Filling Of The Mapping Data Table Update Import Settings and Fields Mapping.

...

Click TestRun test*:

...

*This should be done once only after the application is installed.

3. Go back to all flows. Set descending order in the column 'Updated' for quicker search. Select the flow Import All data CI Data from Cloudaware from the list.

...

4. Schedule In TRIGGER, click on the section to schedule a trigger. Select 'Scheduled' → Daily* → set the time:

...

*The recommended frequency is once a day.

Click Done.

5. In ACTIONS, click Set Flow Variables to select:

...

WHERE

Manage Imports Connection Alias - select the Connections & Credentials Aliases configured in the section 'Set up ServiceNow-to-Google integration' (in this example, Google JWT)

Cloudaware Import Settings Table - the value is auto-populated as this is a system table

Connection - select the JWT Provider configured in the section 'Set up Cloudaware application in ServiceNow' (point 1)

Cloudaware Import Fields Mapping Table - the value is auto-populated as this is a system table

Import Project Id - use the Import Project Id provided by Cloudaware

Import Dataset Id - use the Import Dataset Id provided by Cloudaware

...

As a result, the following tables will be created in ServiceNow:

System tables

Label

Name

Cloudaware CI

x_

gigwa_cloudawa

ca_

2_

cmdb_ci

_cloudaware

Cloudaware

System Metadata

CMDB Schema

x_

gigwa

ca_

cloudawa_2_cloudaware_system_metadataCloudaware Sys Import Tables List

cmdb_schema

CI Class Import 

x_

gigwa

ca_

cloudawa

cmdb_

2

ci_

cloudawa_sys

class_import

_tables_listManage Imports Table

Cloudaware Import Settings

x_

gigwa

ca_

cloudawa

cmdb_

2

ci_

list

class_

of

import_

imported_tablesMapping Table

settings

Cloudaware Import Fields Mapping

x_ca_

gigwa

cmdb_

cloudawa

import_

2

fields_mapping

_data

Application tables

Label

Name

AWS Account

x_gigwaca_cloudawa_2cmdb_aws_account

AWS DynamoDB Backup

x_gigwaca_cloudawa_2cmdb_aws_dynamo_db_backup

AWS DynamoDB Table

x_gigwaca_cloudawa_2cmdb_aws_dynamo_db_table

AWS EBS Snapshot

x_gigwaca_cloudawacmdb_2_aws_snapshot

AWS EBS Volume

x_gigwaca_cloudawacmdb_2_aws_volume

AWS EC2 Image

x_gigwaca_cloudawa_2cmdb_aws_image

AWS EC2 Instance

x_gigwaca_cloudawa_2cmdb_aws_instance

AWS EC2 Security Group

x_gigwaca_cloudawa_2cmdb_aws_security_group

AWS ELB Load Balancer

x_gigwaca_cloudawa_2cmdb_aws_load_balancer

AWS ElastiCache Cluster

x_gigwaca_cloudawa_2cmdb_aws_cache_cluster

AWS ElastiCache Node

x_gigwaca_cloudawacmdb_2_aws_cache_node

AWS Lambda Function

x_gigwaca_cloudawacmdb_2_aws_lambda_function

AWS RDS Cluster

x_gigwaca_cloudawa_2cmdb_aws_db_cluster

AWS RDS Instance

x_gigwaca_cloudawa_2cmdb_aws_db_instance

AWS Redshift Cluster

x_gigwaca_cloudawa_2cmdb_aws_redshift_cluster

AWS S3 Bucket

x_gigwaca_cloudawa_2cmdb_aws_bucket

Imports for some application tables may be deactivated by the admin in the system table Cloudaware Import Settings (x_ca_cmdb_ci_class_import_settings). To deactivate the import, set the property 'Active' to False. The data for the table(s) with property 'Active' set to False will NOT be imported from Cloudaware.

Data upload status check

To check the data upload status, append /x_gigwaca_cloudawacmdb_2ci_listclass_of_imported_tables_listimport_settings.do to the current URL in your web browser.

The full URL should be in the format https://YOURINSTANCE.service-now.com/x_gigwaca_cloudawacmdb_2ci_listclass_of_imported_tables_listimport_settings.do, where 'YOURINSTANCE' is a placeholder for your ServiceNow instance ID.