1
25.1.3
Yokohama, Xanadu, Washington DC, Vancouver
The BeyondTrust Password Safe Integration with ServiceNow provides organizations with the ability to seamlessly request and approve access to managed systems and accounts, all without having to change user interfaces and whilst adhering to the organization's change management processes.
A ServiceNow user can request to check-out credentials or sessions for privileged accounts managed by Password Safe, using any of the ITSM access approval flows - Incident, Change Request, Problem and Request. The user will only gain access to the asset and the privileged account that was requested and approved. Once approved, the user can initiate an RDP or SSH session right from ServiceNow using their native connectivity tools such as Remote Desktop Connection or Putty.
Allows a ServiceNow user with access to privileged accounts managed by BeyondTrust Password Safe to access those accounts from the context of an approved change management ticket.
The integration supports:
- security / criteria checks before any access is allowed (e.g. no impersonation, approved ticket, ticket assigned to the current user, etc.)
- the ability to initiate an RDP or SSH session directly from ServiceNow and utilizing approved access to a managed account
- the ability to retrieve the password for a managed account to allow access via other external tools or methods
- the ability to target specific task types such as Incident, Change Request, Problem, etc.
- the use of a MID server for access to Password Safe environments not publicly accessible
- the same workflows in both classic and workspace views
- Added the ability to select any Affected CI from the system list for both the View Managed Account and Start Session flows
- Added additional logging to the ticket's Work Notes when session links are generated or passwords are retrieved in order to provide better auditing within ServiceNow (in addition to auditing that has always been available within Password Safe)
- Enhanced usability in the Start Session flow by using the Password Safe Managed System's operating system value to automatically default the session type when possible
BeyondTrust Password Safe 22.x or later