I want to limit the number of credential attempts during discovery

Walter Ahn
Tera Contributor

‎07-05-2024 09:52 AM

As I said in the title, I want to limit the number of credentials I try to give the device when doing discovery.

I know it sounds very strange.

We need these features for a number of unspeakable reasons.

The way we use aliases is not a substitute for the functionality we want to see.

I already know how credentials are applied and behave when doing discovery.

I've been looking for scripts to perform tests to implement that functionality, but I haven't found any that pull credentials from within ServiceNow and pass them to a mid-server. (Of course, I'm sure I'm not looking for it. Please, it has to be.)

 

So we ask a lot of experts.

In which script can I find the behavior I'm talking about (passing the credentials to the midserver)?

Is it possible for me to modify it?

If you can't fix it, at least tell me what behavior is preventing you from fixing it.

 

Please answer.

Labels:
0 Helpfuls
  • 766 Views
10 REPLIES 10

Slava Savitsky
Giga Sage

‎07-05-2024 02:20 PM

I am not sure I fully understand your use case. What exactly do you mean by "limiting the number of credential attempts during discovery"? Could you please describe the desired behavior in more detail?


Blog: https://sys.properties | Telegram: https://t.me/sys_properties | LinkedIn: https://www.linkedin.com/in/slava-savitsky/
0 Helpfuls

Walter Ahn
Tera Contributor
In response to Slava Savitsky

‎07-05-2024 06:18 PM

Thank you for your interest.

Let me explain in more detail.

I understand that when doing discovery with ServiceNow OOTB, if you have 100 Linux equivalent credentials, it will take 100 authentication attempts in the worst case until you pass the Linux device ssh authentication.

You can of course set an alias to narrow it down, but I want to use something a little more coercive.

You have 100 credentials, but you only do it 5 times.

0 Helpfuls

Pratiksha
Mega Sage
Mega Sage

‎07-06-2024 04:44 AM

You have to create behaviour and when you are doing it first time make sure the credentails which you want to apply is enabled. Once you have IP affinity created it will use the correct one everytime. 

 

Regards,

Pratiksha 

0 Helpfuls

Walter Ahn
Tera Contributor
In response to Pratiksha

‎07-06-2024 04:49 AM

Thank you so much for your response.

Of course, I understand that if the credential is successful, an affinity will be created.

The behavior you mentioned is something we are using as well.

I don't see a setting for credentials in the behavior, so maybe you could give us an example of how you're talking about?

 

Again, thank you for your response and interest.

0 Helpfuls