ServiceNow Integration with Appgate
The integration of ServiceNow with Appgate significantly enhances access management within IT environments. This integration ensures that end users can securely access applications while limiting unnecessary access for IT staff to critical resources, thereby bolstering security protocols.
Understanding the Concept
In many IT environments, certain servers are deemed so critical that even IT administrators should not have constant access. This approach may seem unconventional, but it is essential for maintaining the integrity and security of these resources.
For example, if an IT administrator attempts to access a critical server, such as one with the IP address 10.201.4.58, and lacks the necessary permissions, the Appgate client will intervene. It will notify the administrator that an open trouble ticket is required to gain access to the resource.
Integrating with ServiceNow
ServiceNow, a leading IT Service Management (ITSM) platform, plays a crucial role in this integration. The Appgate client provides a user-friendly interface for administrators to manage their trouble tickets efficiently.
Utilizing a Chromium-based browser, the Appgate client allows for the embedding of HTML links, facilitating easy navigation. For instance, administrators can quickly access the ServiceNow console to check for any open trouble tickets.
Creating Access Through Trouble Tickets
Upon logging into the ServiceNow environment, administrators can view their assigned trouble tickets. Even if a ticket is resolved, access to certain servers, like 10.201.4.58, remains restricted without an active trouble ticket.
To obtain access, an administrator can create a new trouble ticket detailing the issue, such as "Help me fix my server," and assign it to the appropriate IT staff member. Once submitted, API calls are made between ServiceNow and the Appgate controller to grant the necessary access.
Access Management Workflow
Once a new trouble ticket is created, the Appgate controller updates the user's entitlements accordingly. For instance, an administrator named Jim can successfully ping the server once the trouble ticket is active, allowing him to SSH into the server for essential maintenance tasks, such as running updates.
After completing the required tasks, the administrator can return to ServiceNow, mark the incident as resolved, and update the status. Upon confirmation of resolution, API calls from ServiceNow will retract the user’s access, ensuring compliance with high-security standards.
Potential Use Cases
This integration benefits not only administrators but also regular end users, who can raise trouble tickets to request access to various systems or resources. Additionally, third-party auditors can utilize the trouble ticket system to request access, which can be approved or declined through ServiceNow's workflow process. The Appgate API serves as the final step to ensure compliance and security.
This integration exemplifies the flexibility and power of combining ServiceNow with Appgate's robust access control capabilities, enabling organizations to maintain secure, logged access across diverse systems.
In conclusion, while this article focused on ServiceNow for integration, similar functionalities can be achieved with other ITSM tools like Jira. Organizations must select the tools that best align with their operational needs and security requirements.
Review the video above to learn more.