DDI Workflow Automation with ServiceNow

Experience the power of unified IT service management and network management

TCPWAVE

Maximize efficiency, security, and agility in DDI Management with a comprehensive, integrated solution.

The TCPWave ServiceNow Integration delivers a powerful combination of TCPWave's advanced DDI solutions with ServiceNow's best-in-class ITSM platform. This transformative integration empowers organizations to revolutionize their network management and IT service management experience. It empowers IT teams to proactively monitor, identify, and resolve network issues within a centralized interface. As a result, this seamless collaboration fosters streamlined processes, reduced downtime, and improved end-user satisfaction across the enterprise.


Improved Operational Efficiency

Improved Operational Efficiency

  • The integration of TCPWave with ServiceNow enables your team to automate the management of DNS, DHCP, and IPAM services.
Automated Workflows

Automated Workflows

  • Our integration streamlines IP address, DNS record, and DHCP scope provisioning in ServiceNow through automation.
Enhanced Visibility

Enhanced Visibility

  • Gain real-time insights into your network infrastructure within ServiceNow for informed decision-making and proactive problem resolution.
Customizable Workflows and Scalability

Customizable Workflows and Scalability

  • TCPWave and ServiceNow integration offers customizable workflows to meet your organization's unique needs.
Streamlined Incident Management

Streamlined Incident Management

  • Enables you to track and manage your organization's regulatory requirements, ensuring adherence to best practices and reducing the risk of non-compliance penalties.
TCPWave Integration with ServiceNow
Architecture Overview

The diagram below illustrates the process by which user activities within a ServiceNow workflow trigger REST API calls to TCPWave IPAM. Secure communication between ServiceNow and TCPWave IPAM occurs via HTTPS (HTTP with SSL) over the API.

TCPWave-Servicenow

As an example, a summary of the main steps in a workflow for a Change Request to add a DNS domain in TCPWave IPAM is provided below. The Description field in the Change Request contains a JSON payload containing the attributes and associated values needed to make the change in TCPWave IPAM.

  • A user approves a Change Request in the Change Request Approval activity.
  • In the Request Moderator activity, a Script Include function is invoked for an Add DNS Domain action.
  • The Request Moderator activity initiates an API REST call to TCPWave IPAM to add the domain.
  • ServiceNow and TCPWave IPAM perform authentication by doing an SSL handshake and exchanging certificates in their key stores.
  • TCPWave IPAM accepts the request to add the DNS domain and adds it.
Configuration of TCPWave and ServiceNow

To have ServiceNow invoke functionality in TCPWave, first, configure authentication in TCPWave and ServiceNow. Then configure Script Include functions, workflows, and Change Requests in ServiceNow.

Configuring Authentication

An example of configuring the authentication in TCPWave and ServiceNow using self-signed SSL certificates is presented in the following steps. However, for improved security, TCPWave highly recommends using valid certificates signed by trusted authorities.

1. Create a root certificate using the following commands

  • openssl genrsa -des3 -out snowAppCA.key 4096
  • openssl req -x509 -new -nodes -key snowAppCA.key -sha256 -days 1024 -out snowAppCA.crt

2. In TCPWave IPAM, import the files snowAppCA.crt and snowAppCA.key created in the previous step as a certificate for an appliance. When doing the import, ensure that Trust CA is selected as shown in the screenshot below.

TCPWave-ServiceNow

3. Create the user certificate using the following commands

  • openssl genrsa -out snowApp.key 2048
  • openssl req -new -key snowApp.key -out snowApp.csr

4. Sign the user certificate by root CA certificate using the following command

  • openssl x509 -req -in snowApp.csr -CA snowAppCA.crt -CAkey snowAppCA.key -CAcreateserial -out snowApp.crt -days 500 -sha256

5. Import the user certificate in the file snowApp.crt created in the previous step into TCPWave IPAM, as shown in the screenshot below. This step is required to associate all incoming HTTP requests that use this certificate with an IPAM user.

TCPWave-ServiceNow

6. Generate the PKCS12 format certificate sing the following command

  • openssl pkcs12 -export -in snowApp.crt -inkey snowApp.key -name snowWave -out snowWave.pkcs12

7. In ServiceNow, import the TCPWave SSL Certificate in the file snowWave.pkcs12 created in the previous step, as shown in the screenshot below.

TCPWave-ServiceNow

8. In ServiceNow, define an association between a unique protocol and a key store and default port, as shown in the screenshot below.

TCPWave-ServiceNow
Configuring Script Include Functions in ServiceNow

Within ServiceNow, Script Include functions can be developed to initiate API calls to TCPWave IPAM, activating DDI capabilities. These JavaScript functions, created through the ServiceNow web interface, leverage the native ServiceNow JavaScript API to execute actions, including initiating outbound HTTP REST calls. As a result, these functions enable a variety of RESTful operations within TCPWave IPAM.

The image below illustrates a sample Script Include function within ServiceNow for adding a domain into TCPWave IPAM.

TCPWave-ServiceNow
Configuring Workflows in ServiceNow

ServiceNow workflows can be set up to activate on demand in response to different activities, like approving or executing a Change Request. TCPWave IPAM integration with change events in ServiceNow is done by using workflow transitions that use JavaScript directives to retrieve Change Request information and invoke Script Include functions.

As an example of the configuration of a workflow in ServiceNow, the configuration of a simple one named TCPWave_Integration is presented in subsequent screenshots. You can use this example as a basis to create the workflows that you need. For TCPWave_Integration, general information on it is shown in the screenshot below, including that it operates on the Change Request Table.

TCPWave-ServiceNow

This workflow runs when two conditions are met: the Short Description is add_domain and the Approval status is Approved. These conditions are shown in the following screenshot.

TCPWave-ServiceNow

The TCPWave_Integration workflow is shown in the figure below. The activity named Run Script in the workflow invokes a script that retrieves information from a Change Request. This information includes the type of Change Request, which is in the Short Description field, and the JSON payload, which is in the Description field. Example values for Short Description are add_domain and add_static_object.

TCPWave-ServiceNow

The Script that Run Script runs is shown in the screenshot below. As seen in this Script, it checks the Short Description field for the value add_domain in a Change Request and then invokes an associated Script Include function to add the domain.

TCPWave-ServiceNow
Defining Change Requests in ServiceNow

An example of part of the definition of a Change Request in ServiceNow is shown in the screenshot below. In it, a value that identifies the type of request is specified in the Short Description field. Also, a JSON payload that contains the attributes and associated values that are needed to make the change in TCPWave IPAM is specified in the Description field. Additional example values for these two fields are presented in the appendix, and you can use these examples as a basis to define the Change Requests that you need.

TCPWave-ServiceNow
Resulting Workflow Output

After an authorized administrator approves a Change Request in ServiceNow, the configured workflow for it runs. The following figure shows the successful execution of a version of the TCPWave_Integration workflow that was modified to add a static object.

TCPWave-ServiceNow

As a result of completing the workflow, a static object named AWS00001Instance.aaa.com with an Object Type of AWS Instance was created in TCPWave IPAM, as shown in the screenshot below.

TCPWave-ServiceNow
Workflows Supported by TCPWave

TCPWave supports the workflows below. Example values for the Short Description and Description fields in Change Requests in ServiceNow for some of these workflows are presented below.


Network
  • Create Network
  • Delete Network
  • List Networks

DNS
  • Create "A" Record
  • Delete "A" Record
  • Create CNAME Record
  • Delete CNAME Record

DHCP
  • Create Scope
  • Delete Scope
  • Create DHCP Manual Object
  • Delete DHCP Manual Object

IPAM
  • Get Next Free Available IP
  • Create Static Object
  • Delete Static Object
  • Edit Object
  • Delete Object
  • Add Object RR
  • Edit Object RR
  • Delete Object RR
  • Add Zone RR
  • Edit Zone RR
  • Delete Zone RR
Advantages of ServiceNow Integration

TCPWave DDI offers a broad range of web services that can be efficiently utilized with ServiceNow (and other similar applications) to perform Change Request management and other DDI activities automatically, securely, and rapidly. The SSL-based authentication and encrypted data exchange protocols used by both TCPWave and ServiceNow guarantee a reliable and secure connection between the two platforms. By utilizing TCPWave DDI, businesses can integrate it with ServiceNow seamlessly and customize workflows to cater to almost any requirement, facilitating secure and efficient DDI workflow automation.

Integrating TCPWave with ServiceNow provides a powerful, unified solution for managing your network infrastructure. By combining the industry-leading capabilities of both platforms, you can automate tasks, improve security, and enhance the overall efficiency of your network management operations.