Certificate Inventory Management Logs. Where can I check?

Vaishnavi35
Tera Guru

Hi,

 

1. https://www.youtube.com/watch?v=oUK8-yGfRv4 - I have followed this video and installed the plugins and followed the instructions said.
2. I have activated the "tls_ssl_certs" port , I can see some data when I navigate to Certificate Management -> Unique Certificates
3. But where do I see the logs of this data?
3. As I have not created a specific Discovery Schedule for this. Do I have to?

I would really appreciate some help on this?

Thanks,
Vaishnavi

Welcome to part two of the ITOM Visibility and Governance webinar series! In this session, we're focusing on certificate management to help you streamline operations and enhance governance. Agenda: * Setting up certificate discovery * Configuring certificate lifecycle notifications * Running ...
4 REPLIES 4

MrSmitty
Tera Contributor

If you just enabled the probe then it's capturing the certificate information in horizontal discovery.  So if you have schedules running, check discovery logs and you will see it.

Hi,

There is one existing Discovery schedule for CI discovery but no schedule is created for "Certificates"

I have activated "tls_ssl_certs" port probe. So where can I check the logs of this?

 

Thanks,

Vaishnavi

You activating that port probe added it to Shazzam.  So now when your existing discovery schedule runs, it captures the certificate information via Shazzam.  Check the discovery logs for further information.  You can create discovery schedules for other means of capturing certificate information, but enabling the port probe simply adds functionality to horizontal discovery.

Selva Arun
Mega Sage
Mega Sage

Hi, 

"tls_ssl_certs" is the port probe used for discovering certificates. Most of the common secured ports are added to this port probe by default.

  • All the Shazzam related errors like port not open, timeout, etc.. are available to review only in the Shazzam input payload.
  • The payload for the discovered certificates is stored in the Payload field in the table "sn_disco_certmgmt_certificate_history". All the URLs for which the certificates were not discovered, currently we do not log the error in the discovery logs.

    https://<instance_name>.service-now.com/sn_disco_certmgmt_certificate_history_list.do

Certificate discovery Questions - Support and Troubleshooting (servicenow.com)

Please check the above article.

 

If you believe the solution provided has adequately addressed your query, could you please **mark it as 'Helpful'** and **'Accept it as a Solution'**? This will help other community members who might have the same question find the answer more easily.

 

Thank you for your consideration.

 

Selva