Has anyone ever tackled the automatic renewal of LDAP certificates?

joshuamayes
Giga Expert

‎11-19-2018 01:09 PM

So I'm presented with an interesting problem and I'm not sure the best way to go about solving it.  I wanted to turn to the community for help.

I have ServiceNow integrated with our On-Premise Active Directory for LDAP authentication and user-management.  Apparently our domain controller is configured to automatically renew its certificate a couple of months before the certificate expires.  When this happens, the certificate that ServiceNow has stored for secure LDAP is no longer valid and users can no longer authenticate using LDAP.

I want to devise a solution that watches for that certificate auto-renewal and automatically uploads the certificate to ServiceNow.  I am sure I can accomplish this by posting records to the correct tables via REST.

However, before I dived down the rabbit-hole I wanted to know if anyone has already tackled this problem, and if so how you went about it. What were the events you watched for, can you share your scripts.. etc.

 

Thanks in Advance!

Labels:
0 Helpfuls
  • 1,764 Views
6 REPLIES 6

Ct111
Tera Sage
In response to joshuamayes

‎12-06-2018 10:36 AM

Hi,

 

Do remember that there is a section called as 

 

Actvity Designer  which you can use for testing powershell commands and this will give

you output in similar fashion as you get in workflow.

 

Example in Create AD  --- you can put domain controller, OU definition and field to return and it will give you desired output for the input

 

Mark my ANSWER as CORRECT and HELPFUL if it helped.

0 Helpfuls

joshuamayes
Giga Expert
In response to Ct111

‎12-10-2018 08:15 AM

Sorry.  I mentioned powershell but that doesn't mean that I want ServiceNow to do something in Powershell.

 

Instead I want Powershell to do something in ServiceNow.  But that's not what I'm having trouble with.

 

The part that I'm having trouble with is how to identify that the certificate on my domain controller has changed.

0 Helpfuls