Password reset with Active Directory.

ServiceNowSteve · ‎10-12-2018

Good Afternoon All,

I need some real help here because I am getting very frustrated trying to figure out how to go any further in setting up AD password reset in ServiceNow. Any help is GREATLY appreciated.

What I've done so far:

Following this link: https://docs.servicenow.com/bundle/london-servicenow-platform/page/administer/login/task/t_ConPassRe... I have installed my mid server and configured my credentials (Windows) within the Orchestration > Credentials module.

The MID server shows as validated and UP and I can log into my MID server directly using the same username and password I specified in Orchestration > Credentials.

The Problem(s):

Until I can make it further I have two current problems

When I test my credentials it fails:
When I try to run a connection test from Password Reset > Credential Store I get "com.snc.automation_common.integration.exceptions.NoSuitableMidServerFoundException: Unable to find any validated MID Server based on status (degraded), and application: Orchestration."

As I write this I am assuming I just have the wrong IP address or something but I don't know what else I can use, any ideas?

gbunce · ‎10-12-2018

First off, make sure you have 'Orchestration' as one of 'Supported Applications' (related list tab)

I would also add 'ALL' to the Capabilities related list if this is your only MID server

Second, the IP address should be the IP of the Domain Controller (AD server) you are trying to connect to.

The Test Credentials action you are calling is running the Pwd Connection Test - Master workflow, which then by default, calls the Pwd Connection Test - AD workflow and attempts to connect to the AD server using an RPC to port 135

View solution in original post

Steven Parker · ‎10-12-2018

So are you trying to "Test Credentials" against the MID Server IP using the same MID Server in your screenshot? Or is that TKC_DEV_MID a different MID Server than the IP you are targeting?

I assume you have the MID Server stored in the "MID Server Properties" correct? This is in MID Server configuration section of the Orchestration application.

Please mark this response as correct and/or helpful if it assisted you with your question.
Steven

ServiceNowSteve · ‎10-12-2018

Yes I am trying to test credentials against the same MID server IP as defined in the MID Server field...I didn't know what to put in the IP field which is why I used the same IP...What should that IP be instead?

Yes the MID server is in the Mid Server Properties.

gbunce · ‎10-12-2018

First off, make sure you have 'Orchestration' as one of 'Supported Applications' (related list tab)

I would also add 'ALL' to the Capabilities related list if this is your only MID server

Second, the IP address should be the IP of the Domain Controller (AD server) you are trying to connect to.

The Test Credentials action you are calling is running the Pwd Connection Test - Master workflow, which then by default, calls the Pwd Connection Test - AD workflow and attempts to connect to the AD server using an RPC to port 135

ServiceNowSteve · ‎10-15-2018

I was also able to find out independently that the IP does in fact need to be the domain controller which it was not.

Thank you for confirming this!