Thank you for your feedback.
Form temporarily unavailable. Please try again or contact to submit your comments.

Create CI Identifier rules

Log in to subscribe to topics and get notified when content changes.

Create CI Identifier rules

CI identifier rules define what fields to search in the CMDB for matching data.

Before you begin

Role required: sn_sec_cmn_admin

About this task


  1. Navigate to Security Operations > CMDB > CI Identifier Rules.
  2. Click New.
  3. On the form, fill in the fields.
    Table 1. CI Identifier Rules form
    Field Description
    Table Name of the table in the CMDB.
    Choices are:
    • Computer
    • Configuration Item
    • Hardware
    • IP address
    • Network Adapter
    Field Field that contains information that can be used to locate a CI. This field may be on the CI record, or on a related record, such as a network adapter.

    FQDN, IP Address, DNS name, Mac address, or Name are the only choices that can be used by default.

    For all other fields, to add additional fields to your CI identifier rules, a script include change is required. These scripts must be edited to handle the additional fields as part of the input data to the locateCIByNetwork function in the SecOpsCILocation script include.
    Note: These modifications require coding or advanced ServiceNow expertise.
    The following are the script includes to edit:
    • VulnerabilityUtils.findCIByNetworkDetails
    • QualyUtil.findCIByNetworkDetails
    • SecOpsCILocation.locateCIByNetwork
    Order Order of precedence for the rule. Matches with the lowest order are evaluated first.
    If no match is found when evaluating the CI identifier rules, other tables are searched for a DNS or IP match. The search for a match is conducted, in order, as follows:
    • cmdb_ip_address_dns_name
    • cmdb_ci_network_adapter
    • cmdb_ci_ip_address
    • cmdb_ci (ip_address field)