FireMon Asset Manager
Page tree

Versions Compared

Old Version 17

changes.mady.by.user user-05670

Saved on

compared with

New Version Current

changes.mady.by.user Dong Pak

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

During this first phase of implementation, Lumeta Asset Manager integration has passed ServiceNow's rigorous certification process and is available now in the ServiceNow Store. Search for "FireMon" or "Asset Manager" to get started. 

In this implementation, Asset Manager highlights missing network data for the ServiceNow "Orlando" platform.  ServiceNow then pulls this network data from LumetaAsset Manager. Lumeta Cloud Scanner is expected to be added to this integration in the near-term. This will enable Cloud Discovery (aka Scanner) enables ServiceNow to pull cloud details from Lumeta tooAsset Manager as well

Here's how the integration works:

  1. ServiceNow initiates the first API call to Lumeta Asset Manager requesting a list of all third-party integrations configured on the Lumeta Command Center and the connection status of each. This screenshot shows the scheduled job that calls the underlying API to pull data from LumetaAsset Manager



    The results display in this Lumeta Security Integrations dashboard in ServiceNow. It lists bundles of all third-party integrations configured on the Lumeta Command Center and the connection status of each.

     

  2. ServiceNow initiates a second API call to Lumeta Asset Manager to see the gaps. Asking the question, "What does Lumeta Asset Manager know that ServiceNow doesn't?"

    1. Did Lumeta Asset Manager identify a device lacking an agent such as McAfee or Carbon Black
    2. Did Lumeta Asset Manager find a device that ServiceNow hasn't scanned?  (Tenable, Qualys, Rapid7)?
    3. Did Lumeta Asset Manager discover a CIDR or IP that ServiceNow isn't aware of (Infoblox, BlueCat).

  3. For those whose "SNOW Status" is unmatched, ServiceNow generates an incident ticket––one incident ticket per third-party vendor such as McAfee and containing individual records for each finding (e.g., one row for each of the device at issue).




  4. ServiceNow security professional remediates the issue and marks the ticket as "completed."
  5. ServiceNow initiates a third API call to Lumeta Asset Manager to get an updated list of gaps.
  6.  Lumeta Asset Manager compares the current issue-status to the expected issue-status to validate that ServiceNow-fixed issues are issues are demonstrably fixed. 
  7. Lumeta Asset Manger updates ServiceNow with the new status.



  8. In LumetaAsset Manager, you can configure the ServiceNow integration to have Lumeta Asset Manager update ServiceNow at regular polling intervals, the cadence of which you set. This mechanism refreshes ServiceNow device details as often as you like, keeping them current. 

...

Populating CMDB Data

A second use case answers uses a similar API exchange to answer the question, "What has Lumeta Asset Manager discovered?" It shares with ServiceNow information about a device's profile, its status, and when it was first and last observed, collects  . It conveys timestamps , and other network details to populate the CMDB database within Configuration Management Database (CMDB) within ServiceNow. 

Tip
titleAbout CMDB

Configuration Management Database (CMDB)

...

is an IT model for the efficient support of services and whose purpose is to organize and manage Configuration Items (CI).

...

 

Here's how it works:

  1. Asset Manager queries ServiceNow at a regular interval and ingests CMDB data from ServiceNow, handling it as an external source.
  2. Asset Manager compares data across the two systems.
  3. Asset Manager pushes assets and attributes that are missing in ServiceNow to the ServiceNow

...

  1. server, which it populates the ServiceNow CMDB.

...

  1. Asset Manager can push assets

...

  • Lumeta ingests CMDB data from ServiceNow as an external source
  • Populate Lumeta dashboard and allows us to add to our target, eligible list.
  • Enhance profiling inside of Lumeta

Lumeta Plug-in in ServiceNow

This plug-in is expected to be certified by ServiceNow and available for download in their marketplace. Until that time, the plug-in can be downloaded from you SFTP customer account folder.

Image Removed

...

  1. globally or by zone.

Asset Manager Dashboards within ServiceNow

Lumeta Asset Manager Continuous Discovery
From LumetaAsset Manager, each device profile, its status, first observed, and last observed timestamps, and other network details populating the CMDB database within ServiceNow. 

...