ServiceNow requires an API key with the appropriate permissions to make the API calls. Create the key in Carbon Black Cloud.

See Authentication for details about API Keys in Carbon Black Cloud.

Procedure

  1. In the Carbon Black Cloud console, go to General > Settings.
  2. Get the Carbon Black Cloud hostname from the Carbon Black Cloud console URL.
    Example: https://dashboard.confer.net
    Tip: You can see a list of hostnames at Carbon Black Cloud API Access - Authentication.
  3. Determine permissions for the actions you want to enable in the ITSM or SecOps App.

    For a list of ITSM or SecOps App permissions, see ITSM or SecOps App Actions Permissions.

    Note: SOAR Actions are available based on their availability in the sensors deployed and the permissions configured for the API credentials.
  4. Determine permissions for the actions you want to enable in the Vulnerability Response App.

    For a list of Vulnerability Response App permissions, see Vulnerability Response Data Ingest Permissions.

  5. Option 1: In Carbon Black Cloud, create an API key for authentication. See Setting up API Access.
    1. Create a Custom access level with the required permissions from ITSM or SecOps App Actions Permissions or Vulnerability Response Data Ingest Permissions.
      For details, see Create Access Levels.
    2. Create an API Key of type Custom and assign the Access Level created in Step 5a. See Create and Manage an API Key.
  6. Option 2: Create an OAuth App using VMware Cloud Services Platform (CSP) for authentication.
    1. In CSP, create a custom role that has the required permissions. See ITSM or SecOps App Actions Permissions or Vulnerability Response Data Ingest Permissions.
    2. Create an OAuth App and assign the custom role created in Step 6a.