Policy types for @turbot/servicenow-azure-securitycenter
- Azure > Security Center > Security Center > ServiceNow
- Azure > Security Center > Security Center > ServiceNow > Configuration Item
- Azure > Security Center > Security Center > ServiceNow > Configuration Item > Record
- Azure > Security Center > Security Center > ServiceNow > Configuration Item > Table Definition
- Azure > Security Center > Security Center > ServiceNow > Table
- Azure > Security Center > Security Center > ServiceNow > Table > Definition
Azure > Security Center > Security Center > ServiceNow
tmod:@turbot/servicenow-azure-securitycenter#/policy/types/securityCenterServiceNow
Azure > Security Center > Security Center > ServiceNow > Configuration Item
Synchronize the data for the Azure > Security Center > Security Center
based on the policies Azure > Security Center > Security Center > ServiceNow > Configuration Item > *
The Configuration Item control is responsible for automatically synchronizing records in a designated ServiceNow table, maintaining an up-to-date reflection of the Azure > Security Center > Security Center
information within the ServiceNow CMDB.
tmod:@turbot/servicenow-azure-securitycenter#/policy/types/securityCenterServiceNowConfigurationItem
[ "Skip", "Check: Archived", "Check: Deleted", "Check: Sync", "Enforce: Archived", "Enforce: Deleted", "Enforce: Sync", "Enforce: Sync, archive on delete"]
{ "type": "string", "enum": [ "Skip", "Check: Archived", "Check: Deleted", "Check: Sync", "Enforce: Archived", "Enforce: Deleted", "Enforce: Sync", "Enforce: Sync, archive on delete" ], "example": [ "Skip" ], "default": "Skip"}
Azure > Security Center > Security Center > ServiceNow > Configuration Item > Record
The policy facilitates the accurate representation of cloud resource within the ServiceNow environment, ensuring that critical data is effectively mapped and managed. Attribute of an Azure > Security Center > Security Center
is systematically mapped to a specific column in a ServiceNow table.
The policy allows enabling organizations to select and map only those attributes that are most relevant to their operational needs. It significantly reduces the manual effort involved in data transfer and minimizes the risk of errors, thereby enhancing the overall efficiency of data management.
tmod:@turbot/servicenow-azure-securitycenter#/policy/types/securityCenterServiceNowConfigurationItemRecord
"{\n resource: securityCenter{\n data\n metadata\n turbot {\n akas\n id\n tags\n title\n }\n }\n}\n"
"auto_provision: {{ $.resource.data.autoProvision | dump | safe }}\nid: {{ $.resource.data.id | dump | safe }}\njit_network_access_policies: {{ $.resource.data.jitNetworkAccessPolicies | dump | safe }}\nnot_scopes: {{ $.resource.data.notScopes | dump | safe }}\npolicy: {{ $.resource.data.policy | dump | safe }}\npricing: {{ $.resource.data.pricing | dump | safe }}\nsecurity_center_name: {{ $.resource.data.name | dump | safe }}\nsecurity_contacts: {{ $.resource.data.securityContacts | dump | safe }}\nsubscription_id: {{ $.resource.metadata.azure.subscriptionId | dump | safe }}\ntags: {{ $.resource.turbot.tags | dump | safe }}\ntype: {{ $.resource.data.type | dump | safe }}\n"
{ "type": "object"}
Azure > Security Center > Security Center > ServiceNow > Configuration Item > Table Definition
This policy specifically allows users to define two key aspects: the name of the ServiceNow table where the Azure > Security Center > Security Center
data will be stored, and the details of the columns used for archiving purposes.
tmod:@turbot/servicenow-azure-securitycenter#/policy/types/securityCenterServiceNowConfigurationItemTableDefinition
[ "{\n serviceNowInstance: resources(filter: \"resourceTypeId:tmod:@turbot/servicenow#/resource/types/instance level:self limit:1\") {\n items {\n turbot {\n id\n }\n }\n }\n}\n", "{\n tableDefinition: policyValues(filter: \"policyTypeId:tmod:@turbot/servicenow-azure-securitycenter#/policy/types/securityCenterServiceNowTableDefinition resourceId:{{$.serviceNowInstance.items[0].turbot.id}} level:self\") {\n items {\n value\n }\n }\n applicationScope: policyValues(filter: \"policyTypeId:tmod:@turbot/servicenow#/policy/types/serviceNowApplicationScope resourceId:{{$.serviceNowInstance.items[0].turbot.id}} level:self\") {\n items {\n value\n }\n }\n}\n"]
"tableName: "{%- if $.applicationScope.items | length == 0 or $.tableDefinition.items | length == 0 %} {%- else %}{{$.applicationScope.items[0].value}}_{{$.tableDefinition.items[0].value.table.name | lower}}{% endif %}"\n"
{ "type": "object", "additionalProperties": false, "required": [ "tableName" ], "properties": { "tableName": { "type": "string" }, "archiveColumns": { "type": "object" } }}
Azure > Security Center > Security Center > ServiceNow > Table
Configure a Table for Azure > Security Center > Security Center
resource type in ServiceNow via the Azure > Security Center > Security Center > ServiceNow > Table > *
policies.
tmod:@turbot/servicenow-azure-securitycenter#/policy/types/securityCenterServiceNowTable
[ "Skip", "Check: Configured", "Enforce: Configured"]
{ "type": "string", "enum": [ "Skip", "Check: Configured", "Enforce: Configured" ], "example": [ "Skip" ], "default": "Skip"}
Azure > Security Center > Security Center > ServiceNow > Table > Definition
The policy enables the definition of ServiceNow table properties, including its name and the base table from which it extends, and details the specific columns required for representing Azure > Security Center > Security Center
data.
tmod:@turbot/servicenow-azure-securitycenter#/policy/types/securityCenterServiceNowTableDefinition
{ "type": "object", "additionalProperties": false, "required": [ "table", "columns" ], "properties": { "table": { "type": "object", "required": [ "name" ], "properties": { "name": { "type": "string", "pattern": "^([0-9a-z_])+$" }, "label": { "type": "string" }, "extendsTable": { "type": "string", "pattern": "^([0-9a-z_])+$" } } }, "columns": { "type": "array", "description": "An array of columns with their mappings to the CMDB.", "default": [], "items": { "type": "object", "required": [ "name" ], "properties": { "name": { "type": "string", "description": "The name of the column in the table.", "pattern": "^([0-9a-z_])+$" }, "label": { "type": "string", "description": "The label for the column." }, "type": { "description": "The data type of the column.", "type": "string" }, "size": { "type": "integer", "description": "The length for data type." } } } } }, "default": { "table": { "name": "guardrails_azure_securitycenter_securitycenter", "label": "Azure > Security Center > Security Center", "extendsTable": "cmdb_ci" }, "columns": [ { "name": "auto_provision", "label": "Auto Provision", "type": "string", "size": 1000 }, { "name": "id", "label": "ID" }, { "name": "jit_network_access_policies", "label": "Jit Network Access Policies", "type": "string", "size": 1000 }, { "name": "not_scopes", "label": "Not Scopes", "type": "string", "size": 1000 }, { "name": "policy", "label": "Policy", "type": "string", "size": 1000 }, { "name": "pricing", "label": "Pricing", "type": "string", "size": 1000 }, { "name": "security_center_name", "label": "Security Center Name" }, { "name": "security_contacts", "label": "Security Contacts", "type": "string", "size": 1000 }, { "name": "subscription_id", "label": "Subscription ID" }, { "name": "tags", "label": "Tags", "type": "string", "size": 1000 }, { "name": "type", "label": "Type" } ] }}