Infrastructure Security

  • Release version: Zurich
  • Updated May 29, 2026
  • 1 minute to read

    • Use Infrastructure security tools to create, upload, and manage certificates your instance uses to encrypt traffic from client to server.

    The Infrastructure Security plugin provides the tools that you can use to manage the Transport Layer Security (TLS) ciphers and certificates. Your instance uses TLS to encrypt traffic from the client to your server.

    Select the ciphers used on your instance
    Navigate to All > Infrastructure Security Settings > TLS Settings to configure which TLS 1.2 ciphers your instance uses and the order in which they are tried. TLS 1.3 ciphers are fixed and cannot be modified. Custom ciphers can be configured through Customer Support.
    Generate and upload your own certificates
    Use the infrastructure security tools to generate your own certificate signing requests, which can be signed by the certificate authority of your choice. Navigate to All > Infrastructure Security Settings > Upload Certificate to upload the signed certificate to your instance's load balancer. See Generate a Certificate Signing Request.
    Monitor the status of your ciphers and certificates
    Use the All > Infrastructure Security Settings > TLS Settings History and All > Infrastructure Security Settings > View SYOC Settings pages to view the status of changes you have made to your ciphers and certificates.

    Install the Infrastructure Security plugin

    Install the ServiceNow Infrastructure Security Settings (com.glide.infrastructure_security) plugin to get started using these features. For details on plugin activation, see Activate a plugin.

    After installing the plugin, enable Sign Your Own Security (SYOC) functionality by setting the sn_infra_sec.syoc.enabled system property to true.

    Note:
    If the sn_infra_sec.syoc.enabled property isn't available on your instance, you must create it. For details on this process see Add a system property.