The Chef Automate Incident Creation App for ServiceNow is a certified app available in the ServiceNow store. The Incident App generates incidents in the ServiceNow Incident Management environment for configuration run or compliance check failures in Chef Automate. This helps you capture the failures in your automated infrastructure and improve your incident tracking and resolution.
The Incident App exposes the REST API endpoint for communication between Chef Automate and the ServiceNow instance. Chef Automate sends HTTPS JSON notifications to the Incident App in a ServiceNow instance to creates and update incident failures.
The Incident App generates a data stream of compliance events that you can leverage by using this data to other ServiceNow applications. For example, you can integrate the Chef Automate compliance scan data with Governance and Risk Compliance (GRC) or Security and Incident Management (SIEM) systems in ServiceNow. You can personalize the Chef Automate compliance data stream by prioritizing the scan results, which helps you enhance your risk dashboard with real-time and ranked compliance events instead of low-information and context-free standard data streams.
https://ven12345.service-now.com.x_chef_automate.api role to configure it. Your ServiceNow administrator can enable this for you.Get the app from the ServiceNow store and then install it to your account from the Service Management dashboard.
You can setup automatic incident creation for:
To set up automatic incident reporting for failed Chef Infra Client runs from Chef Automate:
Confirm that you have the x_chef_automate.api role.
Navigate to Settings > Notifications
Select Create Notification
Enter or select:
https://ven12345.service-now.com/api/x_chef_automate/client_run.Select Test Connectivity. A successful test displays Notification test connected successfully. An unsuccessful test displays a message with information about any connection or credential problems to help you fix the error.
Select Create Notification to save this notification.
Follow these steps to report failed Chef InSpec scans from Chef Automate:
Navigate to Settings > Notifications > Create Notification button.
Enter or select:
https://ven12345.service-now.com/api/x_chef_automate/inspec_scan
Select Test Connectivity. A successful test displays Notification test connected successfully. An unsuccessful test displays a message with information about any connection or credential problems to help you fix the error.
Select Create Notification to save this notification.
The Chef Automate Incident App has nine configurable Application Properties. You must have the admin or x_chef_incident.admin roles to change the default values in the Application Properties.
To change the Incident App properties:
Find Chef Incidents in ServiceNow
Select Chef Incidents > Properties from the navigation.
Enter your changes in the Chef Incident Properties form.
Select Save.
x_chef_incident.associationcookbook and node. Default: cookbook. Create an incident for cookbook creates a failed cookbook by setting the value to cookbook. This associates all failing Chef Infra Client runs with the corresponding incident. cookbook is the default value because the number of nodes exceeds the number of cookbooks in any system. The short description of the incident provides information about the failure:
The Chef Infra Client runs tab of the incident displays the associated client runs. Setting the value to node creates an incident for each failed node. All failing Chef Infra Client runs for a node associates with the corresponding incident. The short description of the incident provides information about the run failure for one node.
x_chef_incident.scan_associationAssociate a Chef InSpec scan record with an incident record. Possible values: profile and node. Default: profile.
Create a Chef InSpec compliance scan incident by setting this value to profile. This associates all failed Chef InSpec scans with the corresponding incident. profile is the default value because the number of nodes exceeds the number of profiles. The short description of the incident provides information about the failure.
The Chef InSpec scans tab of the incident displays the associated Chef InSpec scans. Setting the value to node creates an incident for each failed node. All Chef InSpec scans failing for a node associates with the corresponding incident. The short description of the incident indicates the failed node.
x_chef_incident.assigned_toAssign a ServiceNow user ID to incidents. If the user is part of a group, then that group is also automatically assigned to the incident. Default: none.
x_chef_incident.assignment_groupAssign a group to the incident instead of the individual user in the x_chef_incident.assigned_to property. Default: blank.
x_chef_incident.impactSet an incident impact value. Possible values: 1, 2, 3. Default: 2.
x_chef_incident.urgencySet an incident urgency value. Possible values: 1, 2, 3. Default: 2.
x_chef_incident.retention_daysDefine the number of days to retain Chef Infra Client run and Chef InSpec scan reports in ServiceNow. The ServiceNow app automatically updates the records associated with reports when they are closed, deleted, or removed. Default: 30.
x_chef_incident.logging.enabledSet to Yes to enable logging and No to disable it. Once enabled, authorized users can view the logs at Chef incidents > Logs and System logs > Application logs. Default: No.
x_chef_incident.logging.verbositySet the amount of information visible in logs. Possible values: debug, warn, info, and error. Default: error.
To uninstall the Chef Automate Incident App:
© Chef Software, Inc.
Licensed under the Creative Commons Attribution 3.0 Unported License.
The Chef™ Mark and Chef Logo are either registered trademarks/service marks or trademarks/servicemarks of Chef, in the United States and other countries and are used with Chef Inc's permission.
We are not affiliated with, endorsed or sponsored by Chef Inc.
https://docs.chef.io/automate/servicenow_incident_creation/