How to verify mutual authentication for inbound web services is working
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-22-2024 02:30 PM
I have followed the service now documentation to enable mutual ssl for inbound web services on my servicenow instance. https://www.servicenow.com/docs/bundle/xanadu-platform-security/page/integrate/authentication/task/s....
I am now trying to verify if the mutual ssl authentication is actually happening. Is there a way to do that in servicenow?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-23-2024 12:45 AM
Hi @GeoThomas,
You can try these steps to verify mutual SSL authentication:
Check the Logs- Go to System Logs > Transactions and filter for the relevant endpoint. In the transaction details, check the SSL client certificate field to confirm if the certificate is being used.
Enable Debug Logs- Under System Logs > Debug Logs, enable debugging for com.glide.ssl to capture details of the SSL handshake.
Test with a Client- Use a tool like Postman or cURL to send requests with the client certificate and see if the authentication works as expected.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-26-2024 01:16 PM
@anikethgupta , I could not find a field named SSL client certificate in the Transactions table. Also we are not making this API call via midserver, its direct to the service now instance.
We were unable to locate the com.glide.ssl as well to enable debug logs.
