Thank you for your feedback.
Form temporarily unavailable. Please try again or contact docfeedback@servicenow.com to submit your comments.
Versions
  • London
  • Kingston
  • Jakarta
  • Istanbul
  • Helsinki
  • Geneva
  • Store
Close

Configure the UCF integration

Configure the UCF integration

After ServiceNow® HI customer support provides you the UCF-CCH account integration information the OAuth integration process and will contact the requester with the integration information.After Create HI Request for UCF-CCH account integration informationThe UCF integration is an OAuth-based integration requiring a user's CCH Client ID and Client Secret.

Before you begin

Role required: sn_comp_ucf.admin and oauth_admin
Note: Only the UCF Oauth administrator has access to the system Oauth tables. The user must give the UCF Oauth administrator role to the GRC UCF administrator, so the UCF administrator can set up UCF configuration page.

UCF integration requires that GRC is configured and users must be a Common Controls Hub administrator. The UCF integration is an OAuth based integration requiring a user's CCH Client ID and Client Secret.

The configuration page for the global domain is loaded by default. If you are using Domain Separation, delete the default configuration page, and create one specific to your domain.

Procedure

  1. Navigate to Policy and Compliance > Administration > Unified Compliance Integration.
  2. Click the UCF configuration.
  3. Fill in the fields on the form, as appropriate.
    Table 1. UCF Configuration
    Field Description
    Shared List The shared list to be imported.
    Client ID The UCF OAuth Client ID, provided by ServiceNow® HI customer support. See Getting Started with the UCF Common Controls Hub for information.
    Note: Configuration information is specific to the ServiceNow® instance. Be sure to enter accurate information for any test, development, or production instances you are using. Do not include spaces in the entry.
    Client Secret The UCF OAuth Client Secret, provided by ServiceNow® HI customer support. See Getting Started with the UCF Common Controls Hub for information.
    Note: Configuration information is specific to the ServiceNow® instance. Be sure to enter accurate information for any test, development, or production instances you are using. Do not include spaces in the entry.
    Oauth2 Profile The OAuth2 profile to use for downloading. The default is the United Compliance Framework Default Profile that is installed with the UCF plugin. This field does not typically need to be changed .
    Redirect URL Enter the Redirect URL, provided by ServiceNow® HI customer support. For example, https://mycompany.service-now.com/oauth_redirect.do

    See Getting Started with the UCF Common Controls Hub for information.

    Note: Configuration information is specific to the ServiceNow® instance. Be sure to enter accurate information for any test, development, or production instances you are using. Do not include spaces in the entry.
  4. Right-click the form header and click Save.
  5. In the UCF Integration dialog that appears, click Request New Token.
    When configuring the UCF instance for the first time, a user with an UCF administrator account should request the new token.
  6. Enter your Common Controls Hub credentials and log in.
    The first time the UCF administrator logs into UCF, a n application authorization message displays, click Authorize.
  7. Select a shared list and click Save Configuration.

What to do next

If UCF introduces new fields and content, administrators can use staging tables and transform maps to accommodate those changes to UCF data formats. This is an advanced configuration and not required. The following import sets and tables can be configured to customize the UCF download logic.

Table 2. Staging table [extends from import set row table: import_set_row] used for UCF integration
Staging table Description
UCF Authority Document [sn_comp_ucf_authority_document] The UCF Authority Document staging table is used to store authority documents that are downloaded from the UCF Common Controls Hub
UCF Citation [sn_comp_ucf_citation] The UCF Citation staging table is used to store citations that are downloaded from the UCF Common Controls Hub
UCF Control [sn_comp_ucf_control] The UCF Control staging table is used to store controls that are downloaded from the UCF Common Controls Hub
UCF Citation to Control [sn_comp_ucf_m2m_control_citation] The UCF Citation to Control staging table is used to store citation to controls that are downloaded from the UCF Common Controls Hub
Table 3. Transform maps used for UCF integration
Transform maps Description
Default Authority document transform Transforms data from the UCF Authority document staging table into the Authority Document table
Default Citation Transform Transforms data from the UCF Citation staging table into the Citation table
Default Control transform Transforms data from the UCF Control staging table into the Policy Statement table
Control to Citation transform map Transforms data from the UCF Citation to Control table into the Policy Statement to Citation table
.