Skip to main content

Configuration management database (CMDB) integration

You can optionally enable ServiceNow CMDB integration to copy certificates to the cmdb_ci_certificate table in ServiceNow, using one or both of these methods:

  • ServiceNow app option: Use this option if you only want to copy the certificates you request through the ServiceNow app to the CMDB table. When you request a certificate with the ServiceNow app, it saves a local copy to the CMDB table. If you later update the issued certificate in DigiCert ONE, the changes do not get synced back to ServiceNow unless you also have a connector in place for the certificate's business unit.

  • DigiCert ONE connector: Add a connector in DigiCert ONE to copy all certificates from a certain business unit to ServiceNow CMDB, regardless of where the certificates were issued from. An initial migration job copies all the existing certificates from that business unit, and ongoing jobs keep the certificate data in the ServiceNow CMDB synced with DigiCert ONE.

Note

The ServiceNow CMDB table has view-only access. You can’t directly manage the certificates in ServiceNow, but the integration lets you use the CMDB functionality to query, filter, and monitor the certificates from the ServiceNow Workspaces > Certificate Management page.

Prerequisites

To use the CMDB integration features, you need minimum version 1.3.0 of the DigiCert Trust Lifecycle Manager app for ServiceNow.

Your ServiceNow instance must have the Certificate Inventory and Management (App id: sn_disco_certmgmt) v3.3.0 plugin installed, which requires a paid subscription. To learn more and install this plugin:

Use this integration method if you only want to copy certificates you request through the ServiceNow app to the CMDB table.

To enable this option:

  1. Select the CMDB integration item for the DigiCert Trust Lifecycle Manager app in ServiceNow.

  2. Toggle on the option to copy certificates to CMDB.

  3. Once toggled on, the DigiCert Trust Lifecycle Manager app will start saving a copy of any certificate you request to the CMDB table.

Use this integration method if you want to copy all certificates from a business unit to the ServiceNow CMDB table regardless of where the certificates were issued from, while also syncing the certificate data with ServiceNow on an ongoing basis.

Each connector is associated with a specific business unit and copies certificates from that business unit to the ServiceNow instance. To copy certificates from multiple business units, add multiple connectors in DigiCert ONE.

DigiCert ONE prerequisites

  • Your DigiCert account must have the Connectors and ServiceNow CMDB integration features enabled in DigiCert® Account Manager. Contact your DigiCert system administrator to verify or enable these features.

  • The user who will add the ServiceNow connector must have the CMDB Integration Config Manager user role assigned for Trust Lifecycle Manager. To learn more, see Users and access.

Add the connector in DigiCert ONE

You need to add a connector in DigiCert ONE for each business unit from which to copy certificates to the ServiceNow CMDB table.

Before you begin, make sure you know your ServiceNow instance URL and have valid user credentials for it (username and password).

To add the connector:

  1. Select Integrations > Connectors from the Trust Lifecycle Manager menu in DigiCert ONE.

  2. In the IT service management category, select the connector type for ServiceNow.

  3. Fill out the form to configure the connector to ServiceNow:

    • Name: Assign a friendly name to the connector.

    • Business unit: Select the business unit for the certificates to copy and sync to ServiceNow.

    • Link account: Fill in your ServiceNow instance URL and user credentials to establish the connection. At minimum, the ServiceNow user specified in the connector must have the "user" role (x_dice_digicertone.user).

  4. Select Add to finish adding the new ServiceNow connector.

To verify or edit the connector:

  1. Select Integrations > Connectors from the Trust Lifecycle Manager menu in DigiCert ONE.

  2. Select the ServiceNow connector by name to view the details for it.

  3. If you need to make changes, select the pencil icon to edit the connector details, update the applicable fields, and select Update.

Migration jobs

Once the connection from DigiCert ONE to ServiceNow is established:

  • A one-time migration job runs after 30 minutes to copy all existing certificates from the selected business unit to the ServiceNow CMDB table. You can track the status of the initial migration job from the CMDB integration page in the DigiCert Trust Lifeycle Manager app in ServiceNow.

  • Once the initial migration is complete, an ongoing incremental synchronization job runs every 10 minutes to copy any updated certificate data to the ServiceNow CMDB table.