WinRM discovery - WinRM over HTTPS. by using Port # 5986 - Certificate required?

Ahamed rahiman1
Kilo Contributor

‎02-28-2022 05:46 AM

Windows Server discovery through WinRM

Do we need to import/install certificate in MID Server, If we want to use WinRM over HTTPS. by using Port # 5986?

We have followed the doc https://docs.servicenow.com/bundle/rome-it-operations-management/page/product/mid-server/task/t_EnableDeviceClassWinRemoteMgmt.html

Any other set of procedure?

 

Thanks,

Ahamed Rahiman

 

 

Labels:
0 Helpfuls
  • 1,860 Views
1 REPLY 1

Jim Palmer
ServiceNow Employee
ServiceNow Employee

‎02-28-2022 02:19 PM

Ahamed,

Short answer: yes
You can add the TLS certificate for each server OR you can add the root and intermediate certificate authorities (assuming the host certificates are signed) OR you can turn off certificate verification (not recommended).

I'd try working your way through this:

https://docs.servicenow.com/bundle/rome-servicenow-platform/page/product/mid-server/task/t_ConfigMIDSvrConnecPrereq.html#t_ConfigMIDSvrConnecPrereq

as the connection will be between the MID and the Windows target, so if you want to use certificates (also i'd recommend TLS 1.3+) you'll need to add them into the keystore for the MID server java process and set some powershell settings.