How-To Guides
Integration Guides
Integrate with ITSM
5 min
ticketing systems manage critical processes in an enterprise environment, such as change, incident, and problem management within its network kron pam supports ready to use integration with itsm systems, like servicenow, hp sm, and one desk once integrated with an itsm system, whenever a privileged user attempts to access a device, kron pam checks the system for valid and approved change tickets for this user/device/time period based on the ensuing validation process results, kron pam either connects or denies the user access to the device itsm configuration the configurations for ticketing system integration are made through kron pam system config management and device groups screens below is a sample configuration definition for servicenow integration please note that these configurations should be done according to the customer’s own ticketing system setting up system config management parameters navigate to administration > system config man add parameters with the appropriate values see the table below for available parameters parameter value definition ticket control enabled true this parameter enables ticketing system integration ticket rest type servicenow the user can choose the type through this parameter (servicenow, onedesk, etc ) ticket rest url https //abc service now\ com the user should enter the url of the rest api of the ticketing system into this field ticket rest username admin this parameter is the username while calling the rest api of the ticketing system ticket rest password shka47s37!s2819 (encrypt) this parameter is the password while calling the rest api of the ticketing system setting up device groups parameters navigate to administration > device management > device groups set the ticketrequiredforconnection parameter as true this parameter specifies if the ticketing integration will be considered while connecting to the specified device group process flow with kron pam & ticketing system integration (use case) user a wants to connect to any device (rdp / ssh) kron pam uses the ip address of the device and checks for any open task in the ticketing system associated with that specified ip if the result is positive, the current time is cross checked with the planned activity’s date & time of the open task in the ticketing system if the result matches, the open task’s assigned user is cross checked to determine if user a is a match if not a match, user a’s group is cross checked with the ticketing system to determine if the groups are the same if the groups match, kron pam connects the user to the device otherwise, the user will be denied access