I’m currently setting up Certificate Discovery in our ServiceNow instance and plan to use a combination of Port-based and CA-based discovery. However, after reviewing the documentation, it seems that only a few Certificate Authorities (Entrust, DigiCert, Sectigo, GoDaddy) are officially supported for CA-based discovery.

Our organization uses a self-hosted CA for internal sites, and I was wondering if anyone has successfully configured CA-based discovery to work with a self-hosted CA. The documentation doesn’t outline a method for adding or integrating a custom CA, so I’d appreciate any insights or experiences from the community.

Specifically, I’d like to know:

1. Is there a way to integrate a self-hosted CA into the CA discovery process?
2. If not natively supported, are there any workarounds or customization approaches that have worked for others?
3. Any potential limitations or gotchas to consider when using self-hosted CAs with Certificate Discovery?

Thanks in advance for the help!