Loading

SSL Certificate Information

From ServiceNow Wiki
Home > Administer > Security > SSL Certificate Information
Jump to: navigation, search

Contents

1 SSL Certificate Information

ServiceNow uses industry standard SSL to secure communications to ServiceNow instances. The certificate used by ServiceNow changed on October 2nd, 2013. A small number of users may be affected by the change to a new certificate.

1.1 SSL Certificate Change Information

Who is impacted by the SSL certificate change?
While all customers use the new certificate, the only customers likely to require additional changes are those who have integrations, caching, or proxy servers that use a hard-coded ServiceNow SSL certificate.
How can I find out if my instance will be impacted?
If you access your ServiceNow instance using a URL similar to https://<instance>.service-now.com/, you are likely not affected. If you access your ServiceNow instance by a different URL, you most likely access the instance through a proxy. Please contact your IT department or network administrator to verify that the proxy will properly handle the SSL certificate change.
Is there anything else to consider?
Some inbound integrations, services connecting to your ServiceNow instance, may have the current SSL certificate hard-coded. You can view integrations that may be affected on the List of Available Integrations. Contact the service owner for any integration that connects to your ServiceNow instance to verify that it will properly handle the SSL certificate change.
Is there a test page with the new certificate?
There is a test page located at https://sslcerttest.service-now.com/ with the new certificate.
What should I do if there is a problem with the SSL certificate change?
If you believe there is a problem with the SSL certificate change, please contact ServiceNow Technical Support.

2 SSL Certificates

If you have determined that your instance is impacted by the SSL certificate change, use this certificate information to resolve any issues.

2.1 Pre-September 2013 SSL Certificates

0 Subject: /C=US/ST=California/L=San Diego/O=Service-now.com/OU=Operations/CN=*.service-now.com
  Issuer:  /C=US/O=Thawte, Inc./CN=Thawte SSL CA
1 Subject: /C=US/O=Thawte, Inc./CN=Thawte SSL CA
  Issuer:  /C=US/O=thawte, Inc./OU=Certification Services Division/OU=(c) 2006 thawte, Inc. - For authorized use only/CN=thawte Primary Root CA
2 Subject: /C=US/O=thawte, Inc./OU=Certification Services Division/OU=(c) 2006 thawte, Inc. - For authorized use only/CN=thawte Primary Root CA
  Issuer:  /C=ZA/ST=Western Cape/L=Cape Town/O=Thawte Consulting cc/OU=Certification Services Division/CN=Thawte Premium Server CA/emailAddress=premium-server@thawte.com
3 Subject: /C=ZA/ST=Western Cape/L=Cape Town/O=Thawte Consulting cc/OU=Certification Services Division/CN=Thawte Premium Server CA/emailAddress=premium-server@thawte.com
  Issuer:  /C=ZA/ST=Western Cape/L=Cape Town/O=Thawte Consulting cc/OU=Certification Services Division/CN=Thawte Premium Server CA/emailAddress=premium-server@thawte.com

2.2 Post-September 2013 SSL Certificates

0 Subject: /C=US/ST=California/L=San Diego/O=ServiceNow, Inc./CN=*.service-now.com
  Issuer:  /C=US/O=Entrust, Inc./OU=www.entrust.net/rpa is incorporated by reference/OU=(c) 2009 Entrust, Inc./CN=Entrust Certification Authority - L1C
1 Subject: /C=US/O=Entrust, Inc./OU=www.entrust.net/rpa is incorporated by reference/OU=(c) 2009 Entrust, Inc./CN=Entrust Certification Authority - L1C
  Issuer:  /O=Entrust.net/OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.)/OU=(c) 1999 Entrust.net Limited/CN=Entrust.net Certification Authority (2048)
2 Subject: /O=Entrust.net/OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.)/OU=(c) 1999 Entrust.net Limited/CN=Entrust.net Certification Authority (2048)
  Issuer:  /O=Entrust.net/OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.)/OU=(c) 1999 Entrust.net Limited/CN=Entrust.net Certification Authority (2048)
Was this article helpful?
Yes, I found what I needed
No, I need more assistance
Views
Personal tools