Skip to main content

Configuration management database (CMDB) integration

You can optionally enable ServiceNow CMDB integration to copy certificates to the cmdb_ci_certificate table in ServiceNow, using one or both of these methods:

  • ServiceNow app option: Use this option if you only want to copy the certificates you request through the ServiceNow app to the CMDB table. When you request a certificate with the ServiceNow app, it saves a local copy to the CMDB table. If you later update the issued certificate in DigiCert ONE, the changes do not get synced back to ServiceNow unless you also have a connector in place for the certificate's business unit.

  • DigiCert ONE connector: Add a "connector" in DigiCert ONE to copy all certificates from a certain business unit to ServiceNow CMDB, regardless of where the certificates were issued from. An initial migration job copies all the existing certificates from that business unit, and ongoing jobs keep the certificate data in the ServiceNow CMDB synced with DigiCert ONE.

Nota

The ServiceNow CMDB table has view-only access. You can’t directly manage the certificates in ServiceNow, but the integration lets you use the CMDB functionality to query, filter, and monitor the certificates from the ServiceNow Workspaces > Certificate Management page.

Prerequisites

To use the CMDB integration features, you need minimum version 1.3.0 of the DigiCert Trust Lifecycle Manager app for ServiceNow.

Your ServiceNow instance must have the Certificate Inventory and Management (App id: sn_disco_certmgmt) v3.3.0 plugin installed, which requires a paid subscription. To learn more and install this plugin:

ServiceNow app option

Use this integration method if you only want to copy certificates you request through the ServiceNow app to the CMDB table.

To enable this option:

  1. Select the CMDB integration item for the DigiCert Trust Lifecycle Manager app in ServiceNow.

  2. Toggle on the option to copy certificates to CMDB.

  3. Once toggled on, the DigiCert Trust Lifecycle Manager app will start saving a copy of any certificate you request to the CMDB table.

DigiCert ONE connector

Use this integration method if you want to copy all certificates from a business unit to the ServiceNow CMDB table regardless of where the certificates were issued from, while also syncing the certificate data with ServiceNow on an ongoing basis.

Each connector is associated with a specific business unit and copies certificates from that business unit to the ServiceNow instance. To copy certificates from multiple business units, add multiple connectors in DigiCert ONE.

DigiCert ONE prerequisites

Your DigiCert system administrator needs to enable the CMDB integration feature in DigiCert® Account Manager:

  1. Select Accounts from the Account Manager menu and select your Trust Lifecycle Manager account to load the details for it.

  2. Scroll down to the Features section of the account details and make sure the Connectors and ServiceNow CMDB integration features are enabled for Trust Lifecycle Manager.

  3. If either feature is not enabled, select the edit (pencil) icon for Trust Lifecycle Manager, toggle on the Connectors and/or ServiceNow CMDB integration features, and select Save.

Your DigiCert system administrator also needs to assign the required user role to the user who will add the connector to ServiceNow:

  1. Select Access > Users from the Account Manager menu and select the applicable user to load the details for them.

  2. Make sure the user has the CMDB Integration Config Manager user role.

  3. If this role is not assigned, select the edit (pencil) icon for the user and select Next to access their Roles and permissions. Select the list of Trust Lifecycle Manager user roles, check off the CMDB Integration Config Manager role, and select the Update user button.

Add the connector in DigiCert ONE

You need to add a connector in DigiCert ONE for each business unit from which to copy certificates to the ServiceNow CMDB table.

Before you begin, make sure you know your ServiceNow instance URL and have valid user credentials for it (username and password).

To add the connector:

  1. Select Integrations > Connectors from the Trust Lifecycle Manager menu in DigiCert ONE.

  2. In the IT service management category, select the connector type for ServiceNow.

  3. Fill out the form to configure the connector to ServiceNow:

    • Name: Assign a friendly name to the connector.

    • Business unit: Select the business unit for the certificates to copy and sync to ServiceNow.

    • Link account: Fill in your ServiceNow instance URL and user credentials to establish the connection.

  4. Select Add to finish adding the new ServiceNow connector.

To verify or edit the connector:

  1. Select Integrations > Connectors from the Trust Lifecycle Manager menu in DigiCert ONE.

  2. Select the ServiceNow connector by name to view the details for it.

  3. If you need to make changes, select the pencil icon to edit the connector details, update the applicable fields, and select Update.

Migration jobs

Once the connection from DigiCert ONE to ServiceNow is established:

  • A one-time migration job runs after 30 minutes to copy all existing certificates from the selected business unit to the ServiceNow CMDB table. You can track the status of the initial migration job from the CMDB integration page in the DigiCert Trust Lifeycle Manager app in ServiceNow.

  • Once the initial migration is complete, an ongoing incremental synchronization job runs every 10 minutes to copy any updated certificate data to the ServiceNow CMDB table.

En esta sección: