Certificate trust (instance security hardening)
By default, the com.glide.communications.trustmanager_trust_all property is set to false. The ServiceNow AI Platform only trusts certificates that it can verify against the JVM certificate store. Self-signed and enterprise-signed certificates are not trusted.
Note:
The values for these properties are Safe override and cannot be
altered once changed (they are non-revertible). For security purposes, do not change this
property value. If you have further questions, contact Customer Service and Support.
More information
| Attribute | Description |
|---|---|
| Property name | com.glide.communications.trustmanager_trust_all |
| Configuration type | System Properties (/sys_properties_list.do) |
| Configure in Instance Security Center | Yes |
| Purpose | To enforce certificate validation for outgoing requests. |
| Recommended value | false |
| Functional Impact | This remediation enforces strict validation on certificate CA (certificate authority) field. If a trusted entity (CA) issued the certificate, the instance accepts it for further use. |
| Security risk | (Medium) For confidentiality and integrity reasons, application should validate the certificate's CA before using the certificate for any transactional operations. |
| References |
To learn more about adding or creating a system property, see Add a system property.