Asset and Configuration Item (CI) synchronization for Operational Technology (OT) assets
Summarize
Summary of Asset and Configuration Item (CI) synchronization for Operational Technology (OT) assets
This feature maintains synchronization between assets and configuration items (CIs) specifically for Operational Technology (OT) assets in ServiceNow. Unlike typical assets that synchronize based on serial numbers, OT assets can be synchronized using their MAC addresses, which are stored and referenced through the Network Adapter CI. This synchronization ensures accurate and up-to-date alignment between asset records and their corresponding CIs in the CMDB.
Show less
Synchronization Mechanisms
- From Asset to CI: When an asset with a MAC address is created, a CI is created and a corresponding MAC address record is added in the Network Adapter table, linked to the CI. Updates to the asset’s MAC address create new records rather than updating existing ones.
- From CI to Asset: When a CI with a MAC address is created, a linked asset is created, copying the MAC address. If the CI exists first, it updates the asset’s MAC address only if missing.
CI Naming Rules
CI names are generated based on the presence of Serial number and MAC address on the asset, following these formats:
- With Serial number: SerialNumber - ModelName
- With Serial number and MAC address: SerialNumber - ModelName
- Without Serial number but with MAC address: MACAddress - ModelName
- Without Serial number or MAC address: ModelName
CI names update automatically only if they have not been manually changed, the Discovery source is SNassetmanagement, and the CMDB has not modified the name.
MAC Address Synchronization Configuration
By default, MAC address synchronization from CI to Asset is disabled. To enable this, set the snitamcommon.macaddresssync system property to true via Enterprise Asset Workspace > Admin center > Other configuration. Once enabled, a daily scheduled job synchronizes MAC addresses across all enterprise assets.
OT Entity Synchronization
Both the CI and Asset tables include fields to indicate OT entity status. When a CI is marked as an OT entity, the corresponding asset’s OT entity field is set to true. Conversely, creating an asset with the OT entity set to true results in a corresponding CI and OT entity being created in CMDB. Importantly, once a CI is designated as an OT entity, this status cannot be reverted.
Why It Matters for ServiceNow Customers
- Ensures accurate and automated alignment of OT assets and CIs using MAC addresses, which are crucial identifiers for OT devices.
- Supports consistent CI naming for easier identification and management of OT assets within the CMDB.
- Enables configuration of synchronization behavior to suit organizational needs through system properties.
- Facilitates proper OT entity classification and management, critical for OT asset lifecycle and security management.
Related Information
- OT Asset Management licensing
- OT Asset Workspace functionality
- Instructions to view the license report for the OT Asset Management application
Maintain synchronization between asset and CI for OT assets through MAC address on the asset and the Network Adapter CI.
Synchronization between asset and CI is achieved using the Serial number field. However, an OT asset need not necessarily have a serial number, but it’s associated with a MAC address. Therefore, the asset-CI synchronization for OT assets includes the MAC address (mac_addr) field in the Asset [alm_asset] table in addition to the serial number.
A CI can have multiple MAC addresses. The Network Adapter [cmdb_ci_network_adapter] table stores all the MAC addresses and also has a reference field to the CI [cmdb_ci] table. Therefore, the relationship between MAC address and CI is maintained.
Synchronization from asset to CI
- A CI is created.
- A record for the corresponding MAC address is created in the Network Adapter [cmdb_ci_network_adapter] table with a reference to the CI.
When the MAC address of an asset is updated, the existing record in the Network Adapter [cmdb_ci_network_adapter] table isn't updated. Instead, a new record is created in the Network Adapter [cmdb_ci_network_adapter] table.
Synchronization from CI to asset
- An asset is created.
- The MAC address of the CI is copied to the asset.
If there's an existing CI, then the associated asset is updated with the MAC address only if the asset doesn't have it already.
Rules for generating CI names
A CI name follows a format that's based on the following conditions:
| Condition | CI name format |
|---|---|
| Asset has a Serial number | Concatenation of Serial number and Model name separated by hyphen. For example, SN123 - DemoModel. |
| Asset has a Serial number and a MAC address | Concatenation of Serial number and Model name separated by hyphen. For example, SN123 - DemoModel. |
| Asset has no Serial number but has a MAC address | Concatenation of MAC address and Model name separated by hyphen. For example, 88-22-33-66-888-AB - DemoModel. |
| Asset has no Serial number and MAC address | Model name |
- CI name isn't updated manually.
- The Discovery source is SNassetmanagement, which means that the CI is created from an asset.
- CI name hasn't been modified by CMDB.
OT entity synchronization between asset and CI
The CI [cmdb_ci] table has the OT entity [cmdb_ot_entity] field. Also, the Asset [alm_asset] has a corresponding OT entity [ot_entity] field. Synchronization of the OT entity happens as follows:
- When a CI is created with the OT entity reference set on the CI, the OT entity [ot_entity] field in the Asset [alm_asset] table is set to true.
- When an asset with the OT entity set to true is created, a corresponding CI and an OT entity are created on the CMDB side. The OT entity reference is then set on the CI.