Setting Up ServiceNow

What you'll build

A connection to your ServiceNow instance so your agent can automatically index and investigate ServiceNow incidents. Learn more → ServiceNow Incident Indexing. Time: ~10 minutes.

Prerequisites

• An Azure SRE Agent in Running state
• A ServiceNow instance with the Incident table (standard ITSM)
• A ServiceNow user account with itil or admin role (for Basic auth), or a registered OAuth Application (for OAuth)
• Contributor role or higher on the SRE Agent resource

Step 1: Open Incident platform

1. Navigate to sre.azure.com and select your agent
2. In the sidebar, expand Builder
3. Click Incident platform

Checkpoint: You see the "Incident platform" heading with a platform dropdown.

Step 2: Select ServiceNow

1. Click the Incident platform dropdown
2. Select ServiceNow

If another platform is already connected, you'll be prompted to disconnect it first. The agent can connect to one incident platform at a time.

Checkpoint: The ServiceNow form appears with authentication fields.

Step 3: Choose authentication and enter credentials

Select your authentication type from the Authentication Type dropdown.

Option A: Basic Authentication

1. Leave Authentication Type set to Basic Authentication
2. Enter your ServiceNow endpoint (e.g., https://your-instance.service-now.com)
3. Enter your Username
4. Enter your Password

Option B: OAuth 2.0

1. Select OAuth 2.0 from the Authentication Type dropdown
2. Note the Redirect URL shown in the info box — you need to register this in ServiceNow first
3. Enter your ServiceNow endpoint
4. Enter your OAuth Client ID
5. Enter your OAuth Client Secret

Register the redirect URL first

Before authorizing, add the redirect URL to your ServiceNow OAuth application:

1. In ServiceNow, go to System OAuth → Application Registry
2. Open or create your OAuth application
3. Add the redirect URL: https://logic-apis-{region}.consent.azure-apim.net/redirect (The exact URL with your agent's region is shown in the portal)

Checkpoint: All required fields are filled. The Save button (Basic) or Authorize button (OAuth) becomes active.

Step 4: Connect and validate

For Basic Authentication: Click Save. The connection settings are saved and the agent begins checking connectivity to ServiceNow in the background.

For OAuth 2.0: Click Authorize. A popup window opens for you to complete the OAuth flow in ServiceNow. After authorization, the connection is established.

Watch the connectivity indicator — it polls every few seconds and typically confirms the connection within 30 seconds to 2 minutes. The check works by fetching a real incident from your ServiceNow instance to verify the credentials are valid.

Connection failed?

If you see "Unable to connect to ServiceNow":

• Verify your endpoint URL is correct (include https://)
• Confirm the username and password are valid
• Check that the account has the itil role
• Ensure your ServiceNow instance allows REST API access

Checkpoint: The connectivity indicator shows a green "Connected" status.

Step 5: Review quickstart response plan

The Quickstart response plan checkbox is enabled by default. This creates a default response plan that handles High priority incidents automatically. The agent needs at least one response plan before it starts scanning for incidents — if you uncheck this, no incidents are indexed until you create a response plan manually.

To customize incident handling later, go to Activities → Incidents to create additional response plans with specific priority routing and run modes.

Step 6: Verify incidents appear

1. In the sidebar, expand Activities
2. Click Incidents
3. Wait 1–2 minutes for the scanner to complete its first cycle

ServiceNow incidents appear in the overview grid.

Checkpoint: ServiceNow incidents appear with columns for ID, Title, Priority, Status, Agent Status, Created, Impacted Service, and Handler.

---

Edit or disconnect ServiceNow

Edit connection settings

1. Go to Builder → Incident platform
2. Click Edit at the bottom of the page
3. Modify the instance URL, credentials, or other settings
4. Click Save

Disconnect ServiceNow

1. Go to Builder → Incident platform
2. Click Disconnect at the bottom of the page
3. A confirmation dialog appears — click Yes to confirm

After disconnecting, the agent stops scanning for ServiceNow incidents. Your response plans are preserved and reactivate when you reconnect.

What you learned

• How to connect ServiceNow with Basic or OAuth 2.0 authentication
• How connectivity validation catches credential issues during setup
• How the quickstart response plan automates handling for High priority incidents
• Where to view indexed incidents under Activities → Incidents

Troubleshooting

Issue	Solution
"Unable to connect to ServiceNow"	Verify endpoint URL, username/password, and that the account has itil role
No incidents appear after connecting	Ensure the Quickstart response plan checkbox was checked during setup. The agent requires at least one response plan to start scanning.
OAuth authorization popup fails	Ensure the redirect URL is registered in ServiceNow's OAuth Application Registry
Connectivity indicator stays "waiting"	Allow up to 2 minutes. If it times out, recheck your credentials
Need to switch from another platform	Disconnect the current platform first — the agent connects to one platform at a time

Related

Resource	What you'll learn
ServiceNow Incident Indexing →	How ServiceNow incident indexing works and why it matters
Incident Response Plans →	Create response plans to route different priorities to different run modes
Incident Response →	How your agent investigates and responds to incidents