Certificate Inventory Management Logs. Where can I check?

Vaishnavi35
Tera Guru

‎08-14-2024 08:22 AM

Hi,

 

1. https://www.youtube.com/watch?v=oUK8-yGfRv4 - I have followed this video and installed the plugins and followed the instructions said.
2. I have activated the "tls_ssl_certs" port , I can see some data when I navigate to Certificate Management -> Unique Certificates
3. But where do I see the logs of this data?
3. As I have not created a specific Discovery Schedule for this. Do I have to?

I would really appreciate some help on this?

Thanks,
Vaishnavi

https://www.youtube.com/watch?v=oUK8-yGfRv4
youtube.com/watch?v=oUK8-yGfRv4
Welcome to part two of the ITOM Visibility and Governance webinar series! In this session, we're focusing on certificate management to help you streamline operations and enhance governance. Agenda: * Setting up certificate discovery * Configuring certificate lifecycle notifications * Running ...
0 Helpfuls
  • 461 Views
4 REPLIES 4

MrSmitty
Tera Contributor

‎08-14-2024 08:25 AM

If you just enabled the probe then it's capturing the certificate information in horizontal discovery.  So if you have schedules running, check discovery logs and you will see it.

0 Helpfuls

Vaishnavi35
Tera Guru
In response to MrSmitty

‎08-14-2024 08:35 AM

Hi,

There is one existing Discovery schedule for CI discovery but no schedule is created for "Certificates"

I have activated "tls_ssl_certs" port probe. So where can I check the logs of this?

 

Thanks,

Vaishnavi

0 Helpfuls

MrSmitty
Tera Contributor
In response to Vaishnavi35

‎08-14-2024 08:39 AM

You activating that port probe added it to Shazzam.  So now when your existing discovery schedule runs, it captures the certificate information via Shazzam.  Check the discovery logs for further information.  You can create discovery schedules for other means of capturing certificate information, but enabling the port probe simply adds functionality to horizontal discovery.

0 Helpfuls

Selva Arun
Mega Sage
Mega Sage

‎08-14-2024 10:06 AM

Hi, 

"tls_ssl_certs" is the port probe used for discovering certificates. Most of the common secured ports are added to this port probe by default.

  • All the Shazzam related errors like port not open, timeout, etc.. are available to review only in the Shazzam input payload.
  • The payload for the discovered certificates is stored in the Payload field in the table "sn_disco_certmgmt_certificate_history". All the URLs for which the certificates were not discovered, currently we do not log the error in the discovery logs.

    https://<instance_name>.service-now.com/sn_disco_certmgmt_certificate_history_list.do

Certificate discovery Questions - Support and Troubleshooting (servicenow.com)

Please check the above article.

 

If you believe the solution provided has adequately addressed your query, could you please **mark it as 'Helpful'** and **'Accept it as a Solution'**? This will help other community members who might have the same question find the answer more easily.

 

Thank you for your consideration.

 

Selva

0 Helpfuls