Tanium integration v2 fails to isolate hosts whe triggered from ServicenowIssue One of the features of Tanium integration v2 is to isolate specified hosts in the enterprise network. During the process, the isolation operation fails, and the machine with a specified IP address becomes still available online. ReleaseParis and aboveCauseThe Tanium host isolation uses the below script include during the isolation operation internally : https://<instance-name>.service-now.com/nav_to.do?uri=sys_script_include.do?sys_id=bb4ed610537213002455ddeeff7b12f0 The above script include is deployed when Tanium integration v2 is installed in the instance. The script include runs the Tanium package below to perform isolation : Apply Windows IPsec Quarantine This execution happens through a flow designer action, and the communication from Servicenow to Taium server happens through the MID server. The MID server log indicates below error sometimes in case of host isolation failure : <?xml version="1.0" encoding="UTF-8"?><results probe_time="224" result_code="0"><result><output><?xml version="1.0" encoding="utf-8"?><soap:Envelope xmlns:soap="http://schemas.xmlsoap.org/soap/envelope/" soap:encodingStyle="http://schemas.xmlsoap.org/soap/encoding/"><soap:Body xmlns:t="urn:TaniumSOAP"><t:return><command>ERROR: 403 Forbidden RBAC Exception (Ref# 561202e4b675e892): RBACInsufficientPrivilege</command><session>41-16710577-b462923d7861bfb75794b6277019153329b3640260f12f01750f96ebc8d3e1f6</session><object_list></object_list><options></options><ResultXML></ResultXML><result_object></result_object></t:return></soap:Body>ResolutionThe error mentioned in the response payload is returned by Tanium while executing the isolation operation on a specified endpoint. The below URL from Tanium explains more about the issue of Tanium. Tanium Discussion Post Please contact Tanium Support for assistance to resolve this issue.