Configuration

Step 1: Create an API User

  1. Log into the Privilege Manager console using admin credentials.

  2. Navigate to Admin -> Users and select Create.

  3. In the User Type dropdown list, select the API Client option .

  4. Copy the Client ID and Secret value (make sure to store these securely).

  5. Select Create.

Step 2: Create API User Credentials

  1. Log into the Privilege Manager console using admin credentials.

  2. Navigate to Admin -> Configuration and select the Credentials tab.

  3. Select Create.

  4. In the Details field, enter a name for the API user credentials.

  5. Under the Settings section complete the following fields:

    • Account Name: Enter the Client ID from Step 1.

    • Password: Select Edit, and enter the Secret from Step 1.

  6. Select Save Password and then Save.

Step 3: Create ServiceNow Admin Credential

  1. Log into the Privilege Manager console using admin credentials.

  2. Navigate to Admin -> Configuration and select the Credentials tab.

  3. Select Create.

  4. In the Name field enter a name for the ServiceNow user credentials.

  5. In the Description field, enter a description for the ServiceNow user credentials.

  6. Under the Settings section complete the following fields:

    • Account Name: Enter the ServiceNow Admin Username.

    • Password: Select Edit, and enter the ServiceNow Admin Password.

  7. Select Save Password and then Save.

Step 4: Configure ServiceNow Webhook

  1. In Privilege Manager, navigate to the Foreign Systems tab.

  2. Select the ServiceNow link from the list of available foreign systems.

  3. Select Create to add a new configuration. The New page opens.

  4. In the Name field, enter a Name for the ServiceNow server.

  5. In the Base URL field, enter the Base URL for your ServiceNow instance:

  6. https://[InstanceName].service-now.com/ (replace [InstanceName] with your ServiceNow instance name).

  7. Select Create to proceed. The ServiceNow Server page opens.

  8. In the Foreign System Details section, enter a name for your ServiceNow Server and a short description.

  9. In the Settings section complete the following fields:

  10. Credential: Select the ServiceNow Admin Credentials you created earlier.

  11. Base URL: Enter the ServiceNow Base URL from Step 5.

  12. Use Webhook: Select the Use Webhook checkbox to enable real-time communication.

  13. API Credential: Select the API Credentials you created earlier.

  14. Privilege Manager Post Uri: Enter the API endpoint for Privilege Manager:

  15. https://[PrivilegeManagerInstance].com/Tms/services/api/v1/approval/approve (replace [PrivilegeManagerInstance] with your Privilege Manager instance).

  16. Save the changes.

  17. This will automatically trigger a webhook registration in the background and initiate a server task to register the webhook with the ServiceNow app.

Step 5: Check the newly created webhook

  1. Log into the Privilege Manager console using admin credentials.

  2. Navigate to Admin -> Configuration and go to the Messaging tab.

  3. Locate and select the webhook that matches the ServiceNow configuration name.

  4. The settings are automatically saved; no further changes are needed.

    5. By default, the Approval Request Event option is selected as the webhook event.

Step 6: Check Registration in ServiceNow App

  1. Log in to ServiceNow using your admin credentials, and go to All > Delinea Privilege Manager > Integration Configuration.

  2. The registration happens automatically once the Use Webhook checkbox is checked in the Privilege Manager ServiceNow Server configuration (Foreign Systems).

  3. The registration will return an Instance Id (sys_id) for use in subsequent requests.

  4. Navigate to All > Delinea Privilege Manager > Activity Type.

  5. Register the supported Activity Type before sending any requests. The registration returns the Activity Type Id (sys_id).

  6. In the Name field enter the name of the request.

  7. In the Description field enter a description of the reason of this request.

  8. In the Valid Responses field enter valid responses for the activity type are: Approve.Deny. because the activity type supports only these 2 responses.

  9. Select Update.