SP22
Giga Sage
Options
- Subscribe to RSS Feed
- Mark as New
- Mark as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
3 weeks ago
Step-by-step method for discovering internal Microsoft certificates
1. You need to select the certificates stored on the VM, and the VM's IP address should be discovered using either Quick Discovery or Scheduled Discovery.
2. Create a discovery schedule
Name: Certificates discovery - Internal Microsoft
Discover: Certificates
Certificate Discovery Type: CA Trust Discovery
MID Server selection method: Specific MID Server
MID Server: As per your requirement
3) On the Discovery IP Ranges tab, specify the IP address where the certificates are stored.
For example: 10.10.0.0
4) On the Serverless Execution Pattern tab, click New and create a Serverless Execution Pattern for Microsoft CA - Certificate Management.
5) Serverless Execution Pattern
Name: Microsoft CA - Certificate Management
Pattern: Microsoft CA - Certificate Management
Proxy Host: Server Name (mandatory)
6)On the Discovery Pattern Launcher Parameters tab, fill in the following details.
start offset: It starts with 0, and you can increase it as per your requirement.
IP: 10.10.0.0
discover_SAN_for_template: Empty
template_list: You can enter ALL or a specific value provided by the PKI team.
limit: 1500 (You cannot enter a value greater than 1500. If you do, you will receive an error when discovering certificates)
save it.
7) If you have more certificates to discover, you can increase the start offset value by creating another Serverless Execution Pattern.
for example:
start offset: 1500
IP: 10.10.0.0
discover_SAN_for_template: Empty
template_list: You can enter ALL or a specific value provided by the PKI team.
limit: 1500 (You cannot enter a value greater than 1500. If you do, you will receive an error when discovering certificates)
save it.
😎 Go to the Discovery Schedule and click Discover Now.
9) If the discovery is successful, navigate to the Unique Certificates table (cmdb_ci_certificate) to view the discovered certificates.
If you find the article useful or informative, please consider marking it as helpful and bookmarking it for future reference.
Labels:
- 734 Views
2 Comments
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
