Description:
Currently, Morpheus offers integration with ServiceNow, providing three distinct functionalities:
- Exposure of catalog items
- Incident ticket management
- Approvals integration
However, the integration requires full access to all functionalities, which results in ServiceNow accounts needing extensive write permissions on the product, even when only specific functionalities are required. This creates a lot of security issue and unnecessary operational overhead.
The proposed enhancement is to introduce a selective functionality integration option for ServiceNow, for instance a checkbox to select to use only Approvals. This feature would allow users to configure the integration for a single functionality, such as Approvals, without enabling access to other functionalities.
Use case:
A organization uses Morpheus primarily for Service Catalog inside Morpheus and approval workflows through ServiceNow. They wish to integrate ServiceNow specifically for Approvals functionality to streamline their decision-making process. However, the current integration setup mandates broad write permissions on the product, like create/update/delete incidents, requests, requested items, item options, etc… which are not needed. By enabling selective integration, the organization can securely integrate ServiceNow with minimal permissions, reducing risk while maintaining functionality relevant to their use-case.
This targeted integration approach ensures better security, compliance, and ease of use for customers with specific needs.