Discovering VPN Connections

fgbautista_2
Tera Contributor

‎06-17-2025 03:27 AM

Looking on how can we discover VPN Connections within devices

0 Helpfuls
  • 305 Views
2 REPLIES 2

Abbas_5
Tera Sage
Tera Sage

‎06-17-2025 07:06 AM

Hello @fgbautista_2,

 

To discover VPN connections and the devices connected via them in ServiceNow, you'll need to configure your MID Server to communicate with the devices through the VPN and ensure proper credentials are providedThis allows ServiceNow Discovery to scan and identify devices connected to the VPN, updating the Configuration Management Database (CMDB) accordingly. 
Here's a more detailed breakdown:
1. Prerequisites:
  • MID Server Placement:
    The MID Server needs to be located in the same network as the devices you want to discover or have network access to them via the VPN. 
     
  • VPN Connectivity:
    Ensure the VPN connection allows the MID Server to communicate with the devices (e.g., no firewall rules blocking communication). 
     
  • Credentials:
    You need valid credentials (e.g., username/password, SSH keys) for the devices you want to discover, according to a ServiceNow Community post. 
     
  • Supported Protocols:
    ServiceNow Discovery uses protocols like SNMP, SSH, or APIs to communicate with devices. Ensure the VPN connection supports these protocols. 
     
2. Discovery Configuration:
  • Define Discovery Schedules:
    Create discovery schedules in ServiceNow that target the IP address ranges used by the VPN. 
     
  • Credentials Configuration:
    Configure the credentials for the devices you want to discover within the MID Server. 
     
  • Discovery Patterns:
    If necessary, you may need to create or customize Discovery patterns to properly identify and classify the VPN connections and associated devices. 
     
  • VPN Class Modeling:
    If you need to model VPN connections themselves in the CMDB, you may need to define a custom class or extend an existing one to represent them. 
     
3. Addressing Potential Issues:
  • Firewall Rules:
    Ensure that the VPN and any firewalls between the MID Server and the devices don't block communication. 
     
  • Dynamic IP Addresses:
    If the VPN uses dynamic IP addresses, you may need to adjust your discovery schedules or use a more robust method like integration with a dynamic DNS service. 
     
  • Remote Device Access:
    If the devices are laptops or other devices that are not always connected to the VPN, you might need to consider other options like integrating with InTune or SCCM to discover them when they are connected to the network. 
     
  • VPN Detection:
    ServiceNow Discovery relies on being able to communicate with devices, not on detecting VPN connections themselves. So, it's important to ensure that devices are reachable and that the necessary protocols are supported over the VPN. 
     
    If this is helpful, please hit the thumbs up button and accept the correct solution by referring to this solution in future it will be helpful to them.
     
    Thanks & Regards,
    Abbas Shaik
0 Helpfuls

Pratiksha
Mega Sage
Mega Sage

‎06-18-2025 05:01 AM

What do you mean within device?  

0 Helpfuls