Setting up MID Web Server and mTLS connection

Community Alums · ‎02-16-2022

Hi Community,

I need help on setting up the mTLS for Mutual Authentication between MID Server and ServiceNow instance.

I have went through few links in order to achieve this but yet, no luck. I'm asking here to seek for advise and guidance on how to move forward.

The links that I have referred to:

1) Setting up mutual authentication

2) Configure a secure MID Web Server extension

3) MID Web Server mTLS Authentication

4) Configure a secure keystore connection for the MID Web Server

I have tried to generate the certs and create a JKS keystore in the MID Server. Also, I have set the mid.webserver.truststore.path in the MID Server config file.

My MID Server is still in Basic Authentication. I haven't change it to Mutual Authentication type.

When I tried to start the Web Server through the UI, it gives me an error cannot find the keystore:

Can anyone help me on this please?

Daniel Draes · ‎02-22-2022

I guess you went a bit too far. The settings you did are for mTLS between MID and a 3rd party system.

For mTLS between MID and ServiceNow Instance follow these steps:
Configure mTLS authentication for a MID Web Server | ServiceNow Docs

Community Alums · ‎02-22-2022

Hi Daniel,

From the link you provided, on the step (1), you can see it ask us to create the MID Web Server extension. Configure the MID Web Server extension

That is where I'm stuck right now in order to configure the mTLS.

Daniel Draes · ‎02-22-2022

Sorry, my bad. This is the correct link:

MID Server unified key store | ServiceNow Docs

Community Alums · ‎02-22-2022

Hi Daniel, The MID Unified Keystore does work but it will skip the cert validation. This however will not fulfill the mTLS requirement where we need to validate all certs between server and client. What I'm trying to achieve is to use custom cert in the keystore in the mid web server to store the CA signed cert and the client cert in the truststore.