IBM QRadar SOAR

The instruction here: https://github.com/ibmresilient/resilient-community-apps/tree/master/fn_service_now/docs/customize_resilient_guide#app-config-settings-appconfig 
says it require administrative user in service-now

# Username and Password for your Administrative User in ServiceNow
sn_username=ibmresilient
sn_password=MyPassword

However, here https://github.com/ibmresilient/resilient-community-apps/tree/master/fn_service_now/docs/install_guide#step-3-create-a-user-in-servicenow-and-assign-it-the-correct-role it says it requires x_ibmrt_resilient.integrator role.

I assigned the role x_ibmrt_resilient.integrator to the account but didn't work. It was throwing 

------------------------------
Nitin Shrivastava
------------------------------

Hi Nitin,

The servicenow app has the integrator role, however the sub roles that the integrator role utilizes admin permission level procedures. As such, to ensure the app is functional long term, it was necessary to have the elevated permissions required. Thanks for your question.

Kind regards,

------------------------------
Sean OGorman
------------------------------

Original Message:
Sent: Fri June 12, 2020 03:24 AM
From: Nitin Shrivastava
Subject: Access role required for resilient servicenow integration

The instruction here: https://github.com/ibmresilient/resilient-community-apps/tree/master/fn_service_now/docs/customize_resilient_guide#app-config-settings-appconfig 
says it require administrative user in service-now

# Username and Password for your Administrative User in ServiceNow
sn_username=ibmresilient
sn_password=MyPassword

However, here https://github.com/ibmresilient/resilient-community-apps/tree/master/fn_service_now/docs/install_guide#step-3-create-a-user-in-servicenow-and-assign-it-the-correct-role it says it requires x_ibmrt_resilient.integrator role.

I assigned the role x_ibmrt_resilient.integrator to the account but didn't work. It was throwing 

User Not Authenticated error in selftest. I then added adminrole and it starts working.

Why do we need admin level access on ServiceNow? 

------------------------------
Nitin Shrivastava
------------------------------

Hi Sean,
Thanks for the reply.
From how much I have explored the app so far, My interpretation is (please correct me if I am wrong here), the account that we mention in app.config is only used to make API calls to /api/x_ibmrt_resilient/api endpoint that IBM resilient app has created on servicenow end. Why we need such a high permissive role (admin) for this?

------------------------------
Nitin Shrivastava
------------------------------

Original Message:
Sent: Mon June 15, 2020 10:49 AM
From: Sean OGorman
Subject: Access role required for resilient servicenow integration

Hi Nitin,

The servicenow app has the integrator role, however the sub roles that the integrator role utilizes admin permission level procedures. As such, to ensure the app is functional long term, it was necessary to have the elevated permissions required. Thanks for your question.

Kind regards,

------------------------------
Sean OGorman

Original Message:
Sent: Fri June 12, 2020 03:24 AM
From: Nitin Shrivastava
Subject: Access role required for resilient servicenow integration

The instruction here: https://github.com/ibmresilient/resilient-community-apps/tree/master/fn_service_now/docs/customize_resilient_guide#app-config-settings-appconfig 
says it require administrative user in service-now

# Username and Password for your Administrative User in ServiceNow
sn_username=ibmresilient
sn_password=MyPassword

However, here https://github.com/ibmresilient/resilient-community-apps/tree/master/fn_service_now/docs/install_guide#step-3-create-a-user-in-servicenow-and-assign-it-the-correct-role it says it requires x_ibmrt_resilient.integrator role.

I assigned the role x_ibmrt_resilient.integrator to the account but didn't work. It was throwing 

User Not Authenticated error in selftest. I then added adminrole and it starts working.

Why do we need admin level access on ServiceNow? 

------------------------------
Nitin Shrivastava
------------------------------

Hi Sean,
Similar question.  We are operating in a Security environment were we should aim for least privileges possible.  

In our Bank and Insurance Group, this is a showstopper for usage of the App.

Hope this can be reviewed.

------------------------------
--------------------------------
Kris Caron
---------------------------------
------------------------------

Original Message:
Sent: Tue June 16, 2020 04:17 PM
From: Nitin Shrivastava
Subject: Access role required for resilient servicenow integration

Hi Sean,
Thanks for the reply.
From how much I have explored the app so far, My interpretation is (please correct me if I am wrong here), the account that we mention in app.config is only used to make API calls to /api/x_ibmrt_resilient/api endpoint that IBM resilient app has created on servicenow end. Why we need such a high permissive role (admin) for this?

------------------------------
Nitin Shrivastava

Original Message:
Sent: Mon June 15, 2020 10:49 AM
From: Sean OGorman
Subject: Access role required for resilient servicenow integration

Hi Nitin,

The servicenow app has the integrator role, however the sub roles that the integrator role utilizes admin permission level procedures. As such, to ensure the app is functional long term, it was necessary to have the elevated permissions required. Thanks for your question.

Kind regards,

------------------------------
Sean OGorman

Original Message:
Sent: Fri June 12, 2020 03:24 AM
From: Nitin Shrivastava
Subject: Access role required for resilient servicenow integration

The instruction here: https://github.com/ibmresilient/resilient-community-apps/tree/master/fn_service_now/docs/customize_resilient_guide#app-config-settings-appconfig 
says it require administrative user in service-now

# Username and Password for your Administrative User in ServiceNow
sn_username=ibmresilient
sn_password=MyPassword

However, here https://github.com/ibmresilient/resilient-community-apps/tree/master/fn_service_now/docs/install_guide#step-3-create-a-user-in-servicenow-and-assign-it-the-correct-role it says it requires x_ibmrt_resilient.integrator role.

I assigned the role x_ibmrt_resilient.integrator to the account but didn't work. It was throwing 

User Not Authenticated error in selftest. I then added adminrole and it starts working.

Why do we need admin level access on ServiceNow? 

------------------------------
Nitin Shrivastava
------------------------------