Gain hands-on experience with Tanium Asset and Discover and practice how to make the ServiceNow Configuration Management Database (CMDB) accurate and complete.

This topic becomes increasingly more important, as security and business processes, in addition to IT, are relying more and more on the CMDB. This is the backbone of Tanium’s strategic partnership with ServiceNow: to improve data, automation, and remediation for ServiceNow workflows.

In this lab, you will use the ServiceNow Service Graph connector for Tanium and Tanium Connect as the standard integration methods for Tanium Asset and Discover data. You will also learn how Tanium fully supports ServiceNow’s Common Services Data Model (standardized way of organizing and storing information about IT services and their components). Let’s aim for a 100% complete and accurate CMDB so work will flow more smoothly in ServiceNow!

Pre-Req(s): Administrative knowledge of Tanium; basic administrative knowledge of ServiceNow. Attendees will need to have access to a ServiceNow developer instance, which can be requested at developer.servicenow.com prior to Converge. It is also recommended to also install in your ServiceNow dev instance the Service Graph connector for Tanium via All>Available applications.

Learn how to use Tanium's Reporting dashboards to create user interfaces for Tanium-powered workflows. In the first part of the lab, you will learn how to create an example Dashboard tracking usage of specific expensive software suites and connecting Tanium Actions to clean up those products where unused. In the second part, you will learn the tips, tricks, and best practices for developing your own custom workflows within Tanium.

Pre-Req(s): Basic understanding of Tanium and Tanium Custom Content 

Software Bill of Materials helps identify libraries that exist on endpoints, likely shipped with other software. Customers need a readily available way to show which assets are most vulnerable due to the software and its' supporting libraries that are installed.

You may already be familiar with Tanium Comply which scans for compliance and operating system vulnerabilities, Comply can now make sense of the Bill of Materials and determine which libraries are vulnerable. In this lab you will learn best practices for efficiently scanning your enterprise for vulnerabilities. You will identify vulnerable libraries that you may not have known existed within products you commonly use. Once the systems are identified, you will apply updates to the affected products to remediate the vulnerabilities. Finally, you will use Asset and Reporting to showcase vulnerable versions and the remediation efforts you have completed.

Pre-Req(s): Working knowledge of Tanium functions; asking questions, saving questions, and building reports. Understanding of vulnerability and Patch management concepts. Working knowledge of Tanium Patch and Deploy modules

In this lab you will learn how to take your Tanium operations for patching and 3rd party updates to the next level. This lab will focus on Tanium Patch, Deploy, and Comply being used in a stepped maturity program designed to move organizations towards a mature automated approach, maximizing control and effective use of manpower.

Pre-Req(s): None

This lab will dive deep into the functionality available in Tanium Interact for gathering targeted information from endpoints. You will learn various techniques for building questions that can be used to get the exact data you need and for targeting specific endpoints for changes. You will then apply that knowledge in the lab to extend typical use cases beyond built-in module capabilities.

While you will use the Tanium Patch, Reveal, and Impact modules in the lab as examples, the techniques you will learn to apply are universal, and can be applied to any Tanium Module.

Pre-Req(s): 6 months experience with Tanium. Tech Talk Episode #62 – Mastering Interact

This lab will focus on the Tanium DEX (Digital Employee Experience) solution which consists of Performance and Engage. You will gain an understanding of and get hands on experience with the new Performance score feature, Engage sentiment surveys, Engage triggers, and remediation tasks. Key takeaways are:

• Improve the end-user digital experience
• End user self-remediation workflows and capabilities
• Create basic and advanced survey trigger conditions using sensors
• Performance score – how it is measured and how improvement over time improves DEX

Pre-Req(s): Basic understanding of the Tanium Platform

This lab will show how to break silos and accelerate hunting and investigations through the use of structured workflows created by integrating Tanium & Microsoft Sentinel. You will learn how Tanium data can be ingested using Microsoft Sentinel Logic Apps, then use keyword query language (KQL) to analyze and visualize threats, incidents, or stages of investigations within a structured workflow.

Pre-Req(s): Basic understanding of Tanium, asking questions, using Tanium Threat Response. Familiarity of tactics, techniques, and procedures for threat hunting, investigations, and SOC workflows. 

Learn how to fully automate a safe and reliable patching strategy that you can take back and implement at your organization. In this lab you will walk through the configuration of a fully automated patching strategy which you will then execute within the lab environment. As part of the lab you will also remediate any failure notifications, ensure patching compliance, and detect malicious user activity using Tanium Comply and Threat Response.

Pre-Req(s): None