Infoblox and ServiceNow Integration:

With Infoblox and ServiceNow integration, your network and security teams can resolve security issues faster and
more collaboratively with enhanced visibility, agility and automation. The joint solution combines industry-leading
Infoblox DNS, DHCP, and IP address management (DDI) and advanced Configuration Management and Database
(CMDB) and incident management capabilities from ServiceNow. It empowers your network and security
practitioners to respond faster to network changes and security events by enabling them to automatically receive
information on new devices as well as infected or compromised hosts and automate repetitive tasks through intuitive
workflows.

Why Infoblox:

Integration between Infoblox and ServiceNow provides visibility into devices and endpoints joining and leaving

the network, which helps security and network admins to take appropriate actions sooner.

Joint Solution:

The Infoblox component of the joint solution incorporates advanced DDI capabilities and the industry’s most
extensive threat intelligence and third-party security vendor API integrations.

Resolving Network Issues at light speed:

Eliminate calls before they occur with self-service, proactively
prevent issues by assessing product or service health in real
time and engage the right resources to fix issues fast.

Build Business network and security decisions at light

speed:
Automate processes and orchestrate actions across the network
enterprise, reuse components and integrations, and delegate
application development with easy-to-use resources and drag-
and-drop tools.

Eliminate network Service Outages:

Proactively identify network and security issues and pinpoint disruptions with automated orchestrate remediation.

Infoblox DDI activity pack:

This activity pack supports Infoblox DDI management through ServiceNow Orchestration.

The Infoblox DDI activity pack manages the IP addresses used in a network by integrating DNS and DHCP. Custom
Orchestration activities use Infoblox Web API (WAPI) REST web services to access the Infoblox GRID server.

NOTE: To use the Infoblox DDI activities and workflow, you must request activation of the Orchestration -
Infoblox DDI Activity Pack plugin.

DDI is shorthand for the integration of DNS, DHCP, and IPAM (IP Address Management) into a unified service or
solution.
 DNS: The Domain Name System (DNS) is the phonebook of the Internet. Humans access information online
through domain names, like nytimes.com or espn.com. Web browsers interact through Internet Protocol (IP)
addresses. DNS translates domain names to IP addresses so browsers can load Internet resources.

DHCP: DHCP stands for dynamic host configuration protocol and is a network protocol used on IP networks where
a DHCP server automatically assigns an IP address and other information to each host on the network so they can
communicate efficiently with other endpoints. The primary reason DHCP is needed is to simplify the management
of IP addresses on networks.

IPAM: IPAM (IP Address Management) is the administration of DNS and DHCP, which are the network services
that assign and resolve IP addresses to machines in a TCP/IP network. Simply put, IPAM is a means of planning,
tracking, and managing the Internet Protocol address space used in a network.

Infoblox roles and permissions:

There are three types of admin groups on an Infoblox server:

1.Superuser
2.Default
3.Limited Access

Permission hierarchy

1.User: A user can be part of multiple groups.

2.Group: A group can have many roles.
3.Role: Each role consists of specific resource permissions.

Required Permissions:
The Service Now Infoblox activity pack requires appropriate read and read/write privileges for these resources
DHCP
DNS
IPAM
Network

Create a REST credential for Infoblox activities:

All Infoblox activities require a REST credential to manage IP addresses from the Infoblox DDI server.

Before you begin: Before starting this procedure, make sure you have the following:
1.A properly configured and running Infoblox DDI Grid Server.
2.REST credentials defined on the Infoblox DDI server.

Role: admin

Procedure
1. Navigate to Orchestration > Credentials and click New.
2. In the list of credential types, select Basic Auth Credentials.
3. Create the credential record with a logical name, such as Infoblox Cred.
4. Right-click in the header bar of your new credential record and select Copy sys_id from the context menu.
Follow browser instructions to copy the sys_id if browser security measures restrict this function.
5. Paste the sys_id into the rest Credentials input field of each activity you use.

Work flows:

The Infoblox DDI activity pack includes two default workflows, one that reserves and registers IP addresses and
another that releases IP addresses.

To access these workflows, navigate to Workflow > Workflow Editor and select the Workflows tab. Click on a

workflow to open it, and then click the information icon in the workflow header to display the properties dialog box.

Activities:

Infoblox Reserve/Register IP in IPAM

Use this workflow to register IPv4 addresses or request the next available IP address on IPAM. Optionally, you can
use it to register IP addresses on DNS. The custom Infoblox activities used in this workflow are:

 IPAM Register IP Address

 IPAM Reserve IP Address
 Register DNS A-Record
 Get Network Details

Infoblox Reserve/Register IP input variables

Field Description

Infoblox Server IP address of the Infoblox DDI server.

Network Network containing the target IP address.

 Infoblox Reserve/Register IP input variables

Field Description

Zone The DNS zone for the IP address being registered.

Rest Credentials The sys_id of the REST credentials from the ServiceNow instance.

DNS Host Name Name of the DNS server machine on which the IP address is being registered.

IPv4 Address IP address being reserved or registered.

Process Of Workflow:

 Begin Check if IPv4Address is in input through IF condition If YES Register IPv4 address from
input
  If it is Success Check for DNS Host Name in input through Run script Register DNS A
recordSuccess Get Details of NetworkSuccessProcess output through Run ScriptReturn
ValueEnd
 Check if IPv4Address is in input through IF condition If No Reserve next Available IP in Infoblox
IPAM Success Check for DNS Host Name in input through IF condition If YES Check for DNS
Host Name in input through Run script Register DNS A recordSuccess Get Details of
NetworkSuccessProcess output through Run ScriptReturn ValueEnd
 If it is failure It will go through Run Script Error End.

Infoblox Release IPAM Reservations Work Flow:

Use this workflow to release (delete) all the IPAM reservations associated with an IPv4 address. The custom
Infoblox activities used in this workflow are:

 IPAM List IP Reservations

 List DNS Record
 DNS Delete
 IPAM Delete

Infoblox Release IPAM Reservations input variables

Field Description
Rest Credentials The sys_id of the REST credentials from the Service Now instance.
IP to Delete IP address to release.
Infoblox Server IP address of the Infoblox DDI server.
Process of Workflow:

IPAM List IP Reservations: List IPAM Entries

 BeginList IPAM Entries  If it is success It will check List of DNS recordsif it is success need to
get IPAM and DNS records through Run Script  Check if There is a DNS Name for the IP in input
through IF condition If it is Yes Delete DNS Record Delete IPAM Reservations If it is success
Run script using workflow.scratchpad.variable Return value End

 If list IPAM Entries Failure Run script Return Value End.

 Whenever the condition fails Run script Return Value End.