Microsoft Security Response Center Spoke
Summarize
Summary of Microsoft Security Response Center Spoke
The Microsoft Security Response Center Spoke enables integration with the Microsoft Security Response Center API within your ServiceNow instance. This integration allows you to investigate security vulnerability reports affecting Microsoft products and services, assisting in the management of security risks and overall system protection.
Show less
Key Features
- Integration Hub Requirement: An Integration Hub subscription is necessary for this spoke.
- Latest Version: The current version is Microsoft Security Response Center spoke v 1.1.0.
- Supported API Version: Built for Microsoft Security Response Center API version 2020, with potential compatibility for later versions.
- Dependencies: Ensure required plugins are installed, including ServiceNow IntegrationHub Action Step - REST, Complex Object, and IntegrationHub Runtime. Some may require additional licenses.
- Spoke Actions: Automate tasks with actions such as submitting abuse reports and retrieving security update details.
Key Outcomes
By integrating this spoke, you can streamline the reporting of abuse and access detailed information on Microsoft security updates, improving your incident response and risk management capabilities. Utilizing connection and credential aliases simplifies the management of integrations across multiple environments.
Integrate the Microsoft Security Response Center API with your ServiceNow instance to investigate all reports of security vulnerabilities affecting the Microsoft products and services, and gather information to manage security risks and keep the system protected.
Request apps on the Store
Visit the ServiceNow Store website to view all the available apps and for information about submitting requests to the store. For cumulative release notes information for all released apps, see the ServiceNow Store version history release notes.
Integration Hub subscription
This spoke requires an Integration Hub subscription. For more information, see Legal schedules - IntegrationHub overview.
Spoke version
Microsoft Security Response Center spoke v 1.1.0 is the latest version.
Supported versions
This spoke was built for Microsoft Security Response Center API version 2020, but may be compatible with later versions.
Spoke dependencies
- ServiceNow IntegrationHub Action Step - REST (com.glide.hub.action_step.rest)
- Complex Object (com.glide.cobject)
- ServiceNow IntegrationHub Runtime (com.glide.hub.integration.runtime)
Spoke actions
The Microsoft Security Response Center spoke provides actions to automate tasks when events occurs in your ServiceNow instance. Available actions include:
| Category | Action | Description |
|---|---|---|
| Abuse Management | Submit Abuse Report | Submits report to the Microsoft Computer Emergency Response Team using the Common Abuse Reporting system (CARS). |
| Security Management | Get Security Update Details | Retrieves information about the specific CVRF ID. |
| Look up Security Updates | Retrieves the list of all Microsoft security updates. | |
| Look up Security Updates By Key | Retrieves the list of security updates based on the provided ID, CVE, or year. |
Connection and credential alias requirements
Integration Hub uses aliases to manage connection and credential information, and OAuth credentials. Using an alias eliminates the need to configure multiple credentials and connection information profiles when using multiple environments. If the connection or credential information changes, you don't need to update any actions that use the connection.
For information about setting up the spoke, see Set up the Microsoft Security Response Center spoke.