Join the #BuildWithBuildAgent Challenge! Get recognized, earn exclusive swag, and inspire the ServiceNow Community with what you can build using Build Agent.  Join the Challenge.

LDAP in developer instance

amacqueen
Mega Guru

‎06-04-2015 12:50 AM

Just been attempting to set up LDAP in my developer instance and it is failing, got this message:-

ldap://xxx.xxx.xxx.xxx:389/ Connection timed out, failed to connect to server

Verify server address and port are correct and accessible

I seem to recall we had to add a firewall rule to allow SN to talk to our LDAP and I would have thought that existing rule would work however as we are in Europe it may be the developer instances are hosted in the US and I may need an alternative address added.

Any ideas?

TIA

0 Helpfuls
  • 4,050 Views
20 REPLIES 20

derycklio
Mega Expert
In response to amacqueen

‎08-02-2015 04:44 AM

Hi Angus,



I believe you can find out the (at least, some) outbound IP address(es) of your dev instance without calling ServiceNow.




You can create a test Outbound REST Service and let your instance call that REST Service (I normally use http://ipconfig.me/all.json or http://ipinfo.io). These public REST Services do nothing but echoing back the source IP address where the connection is from. It is particularly useful because the returned IP address(es) should be the one you enter into your firewall as source address(es).



For example, my brand new dev instance is at dev16045.service-now.com (inbound IP is 103.23.67.118).



I used ipinfo.io because ipconfig.me is not accessible at the moment. My config:



Screen Shot 2015-08-02 at 9.35.50 pm.png



and Test Run result:



Screen Shot 2015-08-02 at 9.35.38 pm.png



After a few test runs, I noticed the outbound IP addresses are 103.23.67.10-15. And that's the IP addresses I should put into my firewall rules as the source addresses.



You may want to do a similar test to find out the outbound IP addresses for your instance.


Preview file
114 KB
Preview file
100 KB

Michael Fry1
Kilo Patron

‎06-12-2015 07:38 PM

On your firewall, you allow connections the public IP address from only the specific source addresses that ServiceNow will be using from the two (paired) data centers where your instance is located, not the IP address of your instance itself. Normally you could go to HI and find this information but for the Developers instance you need to call them and ask them for the information. I just spent longer than I care to talk about finding this last step.



Hope it helps!


0 Helpfuls

amacqueen
Mega Guru
In response to Michael Fry1

‎06-15-2015 12:38 AM

Thanks for that Michael, I'll give it a go.


0 Helpfuls

amacqueen
Mega Guru
In response to Michael Fry1

‎06-15-2015 06:30 AM

Michael did you just phone either of these two numbers:-



Toll Free:   1 866 709 5932


Direct:   +1 858 345 1444Call_ +1 858 345 1444



I used the second one as I'm not in the US, but got very limited help apart from to use the 'Feedback' link on developer.servicenow.com



Thanks for your help so far


Preview file
1 KB
0 Helpfuls

Michael Fry1
Kilo Patron
In response to amacqueen

‎06-15-2015 07:32 AM

Unfortunately I believe the only way to contact them is via the Feedback on the developers site. Calling HI, they aren't able to help.


0 Helpfuls