Certificate Creation Flow in ServiceNow (IP-Based Discovery)
- Discovery Execution
- Shazzam scans IPs and detects TLS ports
- tls_ssl_certs probe performs SSL handshake and captures the certificate chain.
- Payload Storage
- Certificate data (XML payload) is stored in
sn_disco_certmgmt_certificate_history.
- Business Rule Trigger
- Discovery - Certificate Captured” runs on After insert.
- Fires event: sn_disco_certmgmt.certificate.captured.
- Script Action Execution
- Calls:
- PopulateCmdbCiCertificate → creates certificates
- PopulateCmdbInstalledCertificate → maps certificates to CI & port
- Certificate Processing (Script Include)
- Parses XML payload
- Uses fingerprint/serial for deduplication
- Inserts/updates records in cmdb_ci_certificate via IRE
- Populates fields like issuer, validity, SANs
- Mapping & Relationships
- sn_disco_certmgmt_cmdb_installed_certificate → Cert ↔ CI ↔ Port
- cmdb_rel_ci → relationships created
- Final Update
- History table updated with certificate reference
Final Flow
Discovery → Payload → Business Rule → Event → Script Action → Script Include → CMDB (cmdb_ci_certificate).
