Creating your own API connectors in Security Posture Control

  • Release version: Yokohama
  • Updated January 14, 2026
  • 2 minutes to read
    • Summarize
    Summarized using AI
    This content was generated using new OpenAI-powered functionality. Results are provided on an as is basis and are not guaranteed to be accurate or complete.

    Summary of Creating your own API connectors in Security Posture Control

    The Security Posture Control (SPC) API connector framework allows you to create custom API connectors tailored to your security environment. This functionality helps integrate various security tools and import asset data to enhance your security monitoring and management efforts.

    Show full answer Show less

    Key Features

    • Guided process for creating connectors with the option to use Now Assist for template selection.
    • Step-by-step assistance in the connector builder, ensuring ease of use.
    • A centralized platform to manage and monitor all your SPC API integrations.
    • Ability to publish connectors and track their performance via the SPC API Integrations tab.

    Prerequisites

    Before creating an API connector, ensure you have:

    • Credentials for the service vendor you wish to integrate.
    • Access to their API documentation.

    Required roles include admin for downloading applications and plugins, and specific roles for users to configure connectors effectively.

    Required Applications and Plugins

    To utilize the connector framework, the following applications and plugins must be installed:

    • Security Posture Control API Connectors (snspccxf v2.0.0)
    • Security Posture Control (snsecspccore v7.0.1)
    • Asset Security Posture Management (snseccaasm v5.5.1)
    • Mitigation Controls Monitoring (snsecmitctrl v4.1.4)
    • Integrations Commons for CMDB (sncmdbintutil v2.20.0)

    Additionally, the IntegrationHub Action Template - Data Stream plugin (com.glide.hub.actiontype.datastream) is required.

    Key Outcomes

    By leveraging the SPC API connector framework, you can efficiently create integrations that reflect your unique security needs. This enables improved visibility into your security posture and allows for better asset management within your organization.

    Create your own Security Posture Control (SPC) API connectors using the connector framework that is included with the application.

    Overview for the connector builder framework

    Benefits

    Create your own SPC API connectors quickly to help you integrate with security tools and import asset data that is based on the unique requirements of your environment. Use imported data to help you monitor your overall security posture and identify assets that are missing key security tools.

    The connector framework includes the following features.

    • Starting with Yokohama Patch 11, you have the option to get guidance for selecting a template with a Now Assist skill for this step. See Exploring Now Assist for Vulnerability Response for more information about the generative AI skill and Using Now Assist for Vulnerability Response in Security Posture Control about using the skill in connector framework.
    • A step-by-step process to guide you through the connector builder.
    • A single place to build and maintain all your SPC integrations to import custom data into your CMDB.
    • After you publish them, monitor your API connectors on the SPC API Integrations tab in the Security Posture Control workspace.

    The API connector builder

    You use the Connector builder in the Security Posture Control workspace to create and publish your customized API connectors.

    Prerequisites

    Before you start creating your API connector, you might prefer to set up any credentials for the service (vendor) that you want to implement with and have their API documentation and credentials handy as you work through the Connector builder. See Enter metadata for more information.

    Required applications and plugins

    The following applications and plugins are required.

    For more information about applications in the ServiceNow® Store, see Exploring the ServiceNow Store and downloading and activating applications Download an application from the ServiceNow Store for the first time.
    Note:
    If you're downloading applications to non-production or development instances, it's not necessary to get entitlements.

    Role required: admin for download, installation, and activation of all applications and plugins.

    Table 1. Required Applications
    Application Application ID and version
    Security Posture Control API Connectors sn_spc_cxf v2.0.0
    Security Posture Control sn_sec_spc_core v7.0.1
    Asset Security Posture Management sn_sec_caasm v5.5.1
    Mitigation Controls Monitoring sn_sec_mit_ctrl v4.1.4
    Integrations Commons for CMDB sn_cmdb_int_util v2.20.0
    Table 2. Plugin dependencies
    Plugin Plugin ID
    IntergationHub Action Template - Data Stream com.glide.hub.action_type.datastream

    Required roles

    Role required: admin

    Assign the sn_sec_spc_core.developer role to the users who you want to view and configure SPC API connectors with the Connector builder in the Security Posture Control workspace.

    Assign the sn_spc_cxf.admin role if you want users to configure SPC API connectors with advance scripting with the Connector builder.

    See Install the supported applications for Security Posture Control for information about assigning roles to Security Posture Control groups.