Preparing for installing the Vulnerability Response Integration with Palo Alto Prisma Cloud

  • Release version: Yokohama
  • Updated January 30, 2025
  • 2 minutes to read
    • Summarize
    Summarized using AI
    This content was generated using new OpenAI-powered functionality. Results are provided on an as is basis and are not guaranteed to be accurate or complete.

    Summary of Preparing for installing the Vulnerability Response Integration with Palo Alto Prisma Cloud

    This guide outlines the essential preparation tasks required before installing the Vulnerability Response Integration with Palo Alto Prisma Cloud on the ServiceNow platform. It ensures that your environment and credentials are correctly set up to enable seamless integration and data import from Prisma Cloud into ServiceNow Vulnerability Response.

    Show full answer Show less

    Key Preparation Steps

    • Permissions and Access: Assign a Prisma Cloud permission group with read-only access to Policy and Alerts data. Create access keys (Access Key ID and Secret Key) in Prisma Cloud to permit alert data reading.
    • Credentials Required: Collect the API base URL, Access Key ID, Secret Key, and Prisma Cloud username and password to establish the connection from ServiceNow.
    • Application Installation: Ensure the Vulnerability Response application (version 15.2.0 or later) is installed and activated before installing the Prisma Cloud integration application.
    • Plugin Requirements: Install mandatory plugins including Vulnerability Response, Configuration Compliance, and Vulnerability Response Integration with Palo Alto Prisma Cloud. Optional plugins like Cloud Provisioning and Governance and Discovery and Service Mapping Patterns can enhance functionality.
    • Capacity Planning: Estimate the volume of test results expected for import and verify that your ServiceNow instance can handle this load to avoid performance issues.
    • Administrator Role: Assign an administrator with appropriate roles (such as snvul.vulnerabilityadmin) to manage the integration and remediation of test results.

    Outcomes

    By completing these preparation tasks, ServiceNow customers will be ready to install and configure the Vulnerability Response Integration with Palo Alto Prisma Cloud. This setup enables secure, efficient ingestion of vulnerability data from Prisma Cloud into ServiceNow, facilitating improved vulnerability management and response workflows.

    Prepare for installing the Vulnerability Response Integration with Palo Alto Prisma Cloud by performing setup tasks.

    Before you begin

    To integrate Vulnerability Response with Palo Alto Prisma Cloud, you must be assigned a permission group in Prisma that provides read-only access to Policy and Alerts data. You can find more information on permission groups at Prisma Cloud Administrator Roles.

    For detailed information on the roles assigned to different permission groups, refer to the page Prisma Cloud Administrator Permissions.

    In addition, access keys must be created to enable reading the alerts. For more information on creating access keys, see Create and Manage Access Keys.

    To install and configure the Vulnerability Response Integration with Palo Alto Prisma Cloud, use the following checklist. Before you install the application, verify that the items listed are completed.

    Table 1. Integration preparation checklist
    Task Description
    Checkbox image.
    		Verify that you have the following sets of information:
    • API base URL
    • Access key ID
    • Secret key
    • Username and Password for accessing Prisma Cloud.

    These credentials are used to connect to the Prisma Cloud instance from the ServiceNow AI Platform® instance. The access key ID and secret key must be generated from the Prisma Cloud portal after registration.
    Checkbox image.
    		If not already installed and activated, install the Vulnerability Response application before you install the Vulnerability Response Integration with Palo Alto Prisma Cloud application.

    For more information about installing and activating the Vulnerability Response application, see Install Vulnerability Response. This integration requires version 15.2.0 of Vulnerability Response or later.
    Checkbox image.

    If you don't already have the application on your instance, get entitlements and download the Vulnerability Response Integration with Palo Alto Prisma Cloud application to your ServiceNow AI Platform® instance.

    See .
    Checkbox image.
    Ensure you have installed the following plugins for a smooth integration run:
    • Vulnerability Response
    • Configuration Compliance
    • Vulnerability Response Integration with Palo Alto Prisma Cloud
    The following plugins are optional but can be useful:
    • Cloud Provisioning and Governance
    • Discovery and Service Mapping Patterns
    Checkbox image.

    Estimate the number of test results that you expect to import.

    Verify that your instance can accept the number of test results that you expect to import. An undersized instance can lead to long load times. If you don't know the size of your instance, or if you need assistance, contact ServiceNow Technical Support.
    Checkbox image.
    		Verify that you have an administrator to manage the integrations and to remediate the test results:

    The admin installs the Vulnerability Response Integration with Palo Alto Prisma Cloud application. If not assigned, the admin assigns the vulnerability admin (sn_vul.vulnerability_admin) and other roles.

    You are ready to Install and configure the Vulnerability Response Integration with Palo Alto Prisma Cloud application.