Published: 08 March 2017
By Andy Harris
Here's the video showing the integration between Osirium and ServiceNow. We've created a plug-in policy module for Osirium's profiles which, when enabled, enforces a valid CMDB ticket requirement for every task or SSO session.
ServiceNow is a CMDB (Change Management Database) product that manages the workflow of why SysAdmins and DevOps will access systems, Osirium manages the who, how and when of SSO and task Automation. ServiceNow implements unique IDs for each ticket, whether it be change or incident based. The API allows Osirium to find these tickets and query their status for use in policy flow.
Here you'll see both the reason and the authentication for connecting to a system brought together through logical automation
Osirium not only checks the ticket, it logs its use internally and generates a CEF formatted syslog message
Attackers now need so much MORE just to gain access to your systems:
Many sites have an emergency ticket that is always open. This is for the occaisonal situation where systems need to be fixed and the paperwork done later. Osirium supports this ticket type with full accountability and logging.