Thank you for your feedback.
Form temporarily unavailable. Please try again or contact docfeedback@servicenow.com to submit your comments.

Configure the UCF integration

Log in to subscribe to topics and get notified when content changes.

Configure the UCF integration

The UCF integrates with your ServiceNow® instance through an authentication process which validates your subscription. On the UCF Configuration form, select the type of authentication, then enter a UCF-provided API key or a ServiceNow-provided OAuth2 client and secret.

Before you begin

Role required: sn_comp_ucf.admin and oauth_admin
Note: If you are using Oauth authentication, only the UCF Oauth administrator has access to the system Oauth tables. The user must give the UCF Oauth administrator role to the GRC UCF administrator, so the UCF administrator can set up UCF configuration page.

UCF integration requires that GRC is configured and users must be a Common Controls Hub administrator.

The configuration page for the global domain is loaded by default. If you are using Domain Separation, delete the default configuration page, and create one specific to your domain.

Procedure

  1. Navigate to Policy and Compliance > Administration > Unified Compliance Integration.
  2. Click the UCF configuration.
  3. Fill in the fields on the form, as appropriate.
    Table 1. UCF Configuration
    Field Description
    Shared List The shared list to be imported.
    Note: Shared lists appear subscription authentication.
    Authentication type API Key or Oauth.
  4. Perform one of the following actions:
    Authentication MethodActions
    For API Key authentication
    1. Enter the API key in the API Key field.
    2. Select a shared list and click Save Configuration.
    For Oauth authentication
    Note: If using Oauth authentication, only the UCF Oauth administrator has access to the system Oauth tables. The user must give the UCF Oauth administrator role to the GRC UCF administrator, so the UCF administrator can set up UCF configuration page.
    1. Enter the Client ID or UCF OAuth Client ID provided by ServiceNow® HI customer support. See Create HI Request for UCF-CCH account integration information for information.
      Note: Configuration information is specific to the ServiceNow® instance. Be sure to enter accurate information for any test, development, or production instances you are using. Do not include spaces in the entry.
    2. Enter the OAuth2 profile to use for downloading. The default is the United Compliance Framework Default Profile that is installed with the UCF plugin. This field does not typically need to be changed.
    3. Enter the Redirect URL, provided by ServiceNow® HI customer support. For example, https://mycompany.service-now.com/oauth_redirect.do
    4. Right-click the form header and click Save.
    5. In the UCF Integration dialog that appears, click Request New Token.
      Note: For initial configuration, a user with an UCF administrator account performs this step.
    6. Enter your Common Controls Hub credentials to log in.
      Note: For initial configuration, a user with an UCF administrator account performs this step.
    7. In the application authorization message that displays, click Authorize.
    8. Select a shared list and click Save Configuration.

What to do next

If the UCF introduces new fields and content, administrators can use staging tables and transform maps to accommodate those changes to UCF data formats. This is an advanced configuration and not required. The following import sets and tables can be configured to customize the UCF download logic.

Table 2. Staging table [extends from import set row table: import_set_row] used for UCF integration
Staging table Description
UCF Authority Document [sn_comp_ucf_authority_document] The UCF Authority Document staging table is used to store authority documents that are downloaded from the UCF Common Controls Hub
UCF Citation [sn_comp_ucf_citation] The UCF Citation staging table is used to store citations that are downloaded from the UCF Common Controls Hub
UCF Control [sn_comp_ucf_control] The UCF Control staging table is used to store controls that are downloaded from the UCF Common Controls Hub
UCF Citation to Control [sn_comp_ucf_m2m_control_citation] The UCF Citation to Control staging table is used to store citation to controls that are downloaded from the UCF Common Controls Hub
Table 3. Transform maps used for UCF integration
Transform maps Description
Default Authority Document transform Transforms data from the UCF Authority document staging table into the Authority Document table
Default Citation Transform Transforms data from the UCF Citation staging table into the Citation table
Default Control transform Transforms data from the UCF Control staging table into the Policy Statement table
Control to Citation transform map Transforms data from the UCF Citation to Control table into the Policy Statement to Citation table
.
Feedback