The eMASS Spoke allows enterprises to programmatically connect with the Enterprise Mission Assurance Support Service. eMASS is a government owned web-based application with a broad range of services for comprehensive fully integrated cybersecurity management. Features include dashboard reporting, controls scorecard measurement, and the generation of a system security authorization package. eMASS provides an integrated suite of authorization capabilities and prevents cyber attacks by establishing strict process control mechanisms for obtaining authorization decisions.
This Primary release of the eMASS spoke enables ServiceNow teams to interact with eMASS data seamlessly on the platorm. The spoke enables the following Actions:
- Add milestones to one or many POA&M items
- Add one or many artifacts in a system
- Add one or many cloud resources and their scan results
- Add one or many containers and their scan results
- Add one or many POA&M items in a system
- Add one or many test results in a system
- Get Available Roles
- Get CMMC Assessment Information
- Get control information for one or many controls
- Get location of one or many controls in CAC
- Get milestone by ID in POA&M item in a system
- Get milestones in one or many POA&M items in a system
- Get one or many artifacts in a system
- Get one or many POA&M items in a system
- Get one or many test results in a system
- Get POA&M item by ID in a system
- Get status of active workflows in a system
- Get system information
- Get system information for a specific system
- Get system roles
- Get the file of an artifact in a system
- Get workflow definitions in a site
- Get workflow instance by ID
- Get workflow instances in a site
- Initiate system workflow for review
- Register user certificate and obtain an API Key
- Remove milestones in a system for one or many POA&M items
- Remove one or many artifacts in a system
- Remove one or many cloud resources in a system
- Remove one or many containers in a system
- Remove one or many POA&M items in a system
- Submit control to second role of CAC
- System artifacts details
- System artifacts summary
- System assessment procedures details
- System associations details
- System CONMON integration status
- System control compliance details
- System control compliance summary
- System device findings details
- System device findings summary
- System hardware details
- System hardware summary
- System POA&M details
- System POA&M Summary
- System Ports/Protocols Details
- System Ports/Protocols Summary
- System Privacy Summary
- System Sensor Hardware Details
- System Sensor Hardware Summary
- System Sensor Software Counts
- System Sensor Software Details
- System Sensor Software Summary
- System Software Details
- System Software Summary
- System Status Details
- System Terms Conditions Details
- System Terms Conditions Summary
- System Vulnerability Summary
- Test API Connection
- Update control information in a system for one or many controls
- Update one or many artifacts in a system
- Update one or many POA&M items in a system
- Update one or many POA&M milestones in a system
- Upload static code scans or Clear static code scans
- User System Assignments Details
- VA OMB FISMA SAOP Summary
- VA System A&A Summary
- VA System A2.0 Summary
- VA System FISMA Inventory Crypto Summary
- VA System FISMA Inventory Summary
- VA System P.L. 109 Reporting Summary
- VA System Threat Architecture Details
- VA System Threat Risks Summary
- VA System Threat Sources Details
This primary release of the eMASS spoke.
eMASS:
- Register for a PKI Key with the eMASS development team. The eMASS API requires a client certificate (SSL/TLS, DoD PKI only). Every call to the eMASS REST API will require the use of the agreed upon public key certificate and API key.
- Users are required to log-in to eMASS and grant permissions for a client to update data within eMASS on their behalf. This is only required for actionable requests (PUT, POST, DELETE). The Registration Endpoint and all GET requests can be accessed without completing this process with the correct permissions.
ServiceNow:
- Plugins:
- ServiceNow IntegrationHub Action Step - JSON Parser