Home Orlando Security Incident Management Security Operations Configuration Compliance Configuration Compliance setup Install and configure Configuration Compliance

Install and configure Configuration Compliance

Before you run Configuration Compliance in your Now Platform® instance, you must first download and install the Configuration Compliance application from the ServiceNow Store. This application is available as a separate subscription.

Before you begin

Complete the following setup checklist prior to installation. These setup tasks are required for a smooth installation and configuration.

Note: This process applies only to applications downloaded to production instances. If you're downloading applications to sub-production or development instances, it's not necessary to get entitlements. Proceed to Activate a ServiceNow Store application.


Setup tasks	Description
Verify that you have the required ServiceNow roles for your instance.	The following roles are required for installation, configuration, and verification of expected results: If not already assigned, the System Administrator [admin] installs the application and assigns the Configuration Compliance Admin [sn_vulc.admin] role. The Configuration Compliance Admin [sn_vulc.admin] oversees configuration and verifies expected results. The Remediation Owner [sn_vulc.remediation_owner] reads and updates assigned records. The sn_vulc.remediation_owner role is also automatically assigned when any user is assigned the itil role.
Qualys Vulnerability Integration
If you plan to use the Qualys Vulnerability Integration with Configuration Compliance, verify that the Vulnerability Response application is installed and activated prior to configuring the Qualys Vulnerability Integration using Setup Assistant.	To verify that they are installed and activated, navigate to Subscription Management > Subscriptions in your instance. The list displays the subscriptions your organization has purchased. If the Vulnerability Response application is not installed and activated see, Install and configure Vulnerability Response. Note: If the Qualys Vulnerability Integration is installed on your system, and your API credentials are different than the ones you want to use for Configuration Compliance, go into Setup Assistant (in Vulnerability Response) and assign them to each Qualys PC integration. Navigate to Qualys Vulnerability Integration > Primary Integrations and edit the Qualys API Credentials field under the Qualys REST Details tab. For more detailed information on the Qualys Vulnerability Integration, see Understanding the Qualys Vulnerability Integration.

Role required: admin

About this task

Separate third-party SCA plugins acquire and transform data in Configuration Compliance. Before you can use Configuration Compliance to remediate configuration items, you must perform at least one network scan.

Procedure

To get entitlement and download the Configuration Compliance core application, navigate to the ServiceNow Store.
In the upper right of the page, click Log In.
In the dialog that is displayed, enter your HI credentials and click Login.
On the page that is displayed, if not selected, click the ServiceNow Products tab.
To view the associated applications that you are eligible for with the Configuration Compliance application, on the product list page, click the Configuration Compliance product.

The page that is displayed lists all the applications you are eligible for if you opt-in. For more information on an application, click a link.
To get the Configuration Compliance application, click Opt-in.
To agree to the terms and conditions, at the prompt, select the check box and click Accept.
A message is displayed that indicates you have successfully opted-in for the application.

With the ServiceNow Products tab selected on the Products List, a green check mark replaces the plus sign to the right of the Configuration Compliance application, as shown in the following figure.

After you have accepted the terms and conditions and managed entitlements for any of the applications on the ServiceNow Products tab, on the Products List page, you can click the plus sign (+) to get entitlement and opt-in for the other applications on this page with a single click.
Skip to step 10 to install the application on your Now Platform instance.
(Optional) Alternatively, if you want to manage your entitlement for the Configuration Compliance application on other Now Platform instances, follow these steps.
1. If the Manage Entitlement button is not displayed, click the Configuration Compliance application on the Product List to display it.
2. Click Manage Entitlement.
3. In the Manage Entitlements for Configuration Compliance dialog that is displayed, choose one:
4. Click OK or Cancel to continue.
You are ready to activate plugins and install the application on your Now Platform instance(s).
Log in to the Now Platform instance that you want to install the Configuration Compliance application on.
Navigate to System Applications > All Available Applications > All.
From the applications listed, locate the Configuration Compliance application (sn_vulc) and click Install.
The Application installation dialog is displayed. Any dependencies that will be installed are displayed.
If you want demo data, select the Load demo data check box and click Install.

Note: If you do not select the Load demo data check box, demo data is not available to install from the Application Manager later. For information on how to install or reinstall demo data after the initial installation, see the Work around to install demo data if application is already installed [KB0722909] article in the Now Support Knowledge Base.

This installation may take some time. A message is displayed in the Install dialog after the application and its dependencies are successfully installed.
Click Close.
After the installation successfully completes, see Configuration Compliance calculator groups and Configuration Compliance criticality maps.

Previous topic

Next topic

Release version

Install and configure Configuration Compliance

Before you begin

Complete the following setup checklist prior to installation. These setup tasks are required for a smooth installation and configuration.


Setup tasks	Description
Verify that you have the required ServiceNow roles for your instance.	The following roles are required for installation, configuration, and verification of expected results: If not already assigned, the System Administrator [admin] installs the application and assigns the Configuration Compliance Admin [sn_vulc.admin] role. The Configuration Compliance Admin [sn_vulc.admin] oversees configuration and verifies expected results. The Remediation Owner [sn_vulc.remediation_owner] reads and updates assigned records. The sn_vulc.remediation_owner role is also automatically assigned when any user is assigned the itil role.
Qualys Vulnerability Integration
If you plan to use the Qualys Vulnerability Integration with Configuration Compliance, verify that the Vulnerability Response application is installed and activated prior to configuring the Qualys Vulnerability Integration using Setup Assistant.	To verify that they are installed and activated, navigate to Subscription Management > Subscriptions in your instance. The list displays the subscriptions your organization has purchased. If the Vulnerability Response application is not installed and activated see, Install and configure Vulnerability Response. Note: If the Qualys Vulnerability Integration is installed on your system, and your API credentials are different than the ones you want to use for Configuration Compliance, go into Setup Assistant (in Vulnerability Response) and assign them to each Qualys PC integration. Navigate to Qualys Vulnerability Integration > Primary Integrations and edit the Qualys API Credentials field under the Qualys REST Details tab. For more detailed information on the Qualys Vulnerability Integration, see Understanding the Qualys Vulnerability Integration.

Role required: admin

About this task

Procedure

To get entitlement and download the Configuration Compliance core application, navigate to the ServiceNow Store.
In the upper right of the page, click Log In.
In the dialog that is displayed, enter your HI credentials and click Login.
On the page that is displayed, if not selected, click the ServiceNow Products tab.
To view the associated applications that you are eligible for with the Configuration Compliance application, on the product list page, click the Configuration Compliance product.

The page that is displayed lists all the applications you are eligible for if you opt-in. For more information on an application, click a link.
To get the Configuration Compliance application, click Opt-in.
To agree to the terms and conditions, at the prompt, select the check box and click Accept.
A message is displayed that indicates you have successfully opted-in for the application.

With the ServiceNow Products tab selected on the Products List, a green check mark replaces the plus sign to the right of the Configuration Compliance application, as shown in the following figure.

After you have accepted the terms and conditions and managed entitlements for any of the applications on the ServiceNow Products tab, on the Products List page, you can click the plus sign (+) to get entitlement and opt-in for the other applications on this page with a single click.
Skip to step 10 to install the application on your Now Platform instance.
(Optional) Alternatively, if you want to manage your entitlement for the Configuration Compliance application on other Now Platform instances, follow these steps.
1. If the Manage Entitlement button is not displayed, click the Configuration Compliance application on the Product List to display it.
2. Click Manage Entitlement.
3. In the Manage Entitlements for Configuration Compliance dialog that is displayed, choose one:
4. Click OK or Cancel to continue.
You are ready to activate plugins and install the application on your Now Platform instance(s).
Log in to the Now Platform instance that you want to install the Configuration Compliance application on.
Navigate to System Applications > All Available Applications > All.
From the applications listed, locate the Configuration Compliance application (sn_vulc) and click Install.
The Application installation dialog is displayed. Any dependencies that will be installed are displayed.
If you want demo data, select the Load demo data check box and click Install.

Note: If you do not select the Load demo data check box, demo data is not available to install from the Application Manager later. For information on how to install or reinstall demo data after the initial installation, see the Work around to install demo data if application is already installed [KB0722909] article in the Now Support Knowledge Base.

This installation may take some time. A message is displayed in the Install dialog after the application and its dependencies are successfully installed.
Click Close.
After the installation successfully completes, see Configuration Compliance calculator groups and Configuration Compliance criticality maps.

How search works:

Topics are ranked in search results by how closely they match your search terms

Install and configure Configuration Compliance

Install and configure Configuration Compliance

On this page

Install and configure Configuration Compliance

Install and configure Configuration Compliance

Log in to personalize your search results and subscribe to topics