Use DigiCert® Trust Lifecycle Manager with full integration into ServiceNow to control your certificates’ ecosystem.
DigiCert Trust Lifecycle Manager leverages ServiceNow’s workflow strengths to provide clean and efficient certificate lifecycle management paths for you and your teams.
With DigiCert Trust Lifecycle Manager, you import existing certificate profiles from your DigiCert ONE account. You then use the profiles to build requests for the certificates that you need. Currently DigiCert Trust Lifecycle Manager works with private certificates and public CertCentral certificates.
DigiCert introduces ServiceNow integration with DigiCert Trust Lifecycle Manager
DigiCert Trust Lifecycle Manager is a digital trust solution for CA-agnostic certificate management and PKI services. Trust Lifecycle Manager is now available as a ServiceNow app that gives you the ability to enroll and manage certificates from your ServiceNow environment using its approval workflows. With DigiCert Trust Lifecycle Manager, companies can:
-
Centralize visibility and control over your certificate landscape with simple design and a new Dashboard
-
Reduce risk of business disruption from certificate expiration or human error
-
Streamline operations with automation and configurable workflows, and
-
Increases agility for fast remediation or adaptation to changes in cybersecurity standards.
How it Works
A ServiceNow admin connects through their organization’s DigiCert Trust Lifecycle Manager account to configure certificate profiles. After configuring the profiles, the admin assigns role-based access controls.
ServiceNow users, with appropriate roles, can initiate typical certificate actions and be confident that it has been routed through the designated approval workflows. Once requests are approved, DigiCert Trust Lifecycle Manager issues the certificate for pickup in the ServiceNow environment.
Frequently asked questions
Q: How does DigiCert Trust Lifecycle Manager connect to ServiceNow?
A: Currently we support API key based integration. The API key allows the ServiceNow app to integrate and enroll certificates from their provisioned account.
Q: Can you see all the orders within Trust Life Cycle Manager?
A: By design, users can see their requests and certificates within ServiceNow.
Q: What type of private certificates can you enroll?
A: For private user and server certificates, it supports:
- CSR-based enrollment
- DigiCert Trust Assistant-based enrolment with manual approval
- CertCentral-based enrollment
Q: What type of public server certificates can you enroll?
A: For public server certificates, it supports CertCentral-based enrollment.
Q: What aspects of the certificate’s lifecycle are covered?
A: You can enroll, renew, reissue, customize, and revoke certificates.
Q: Will a DigiCert ONE administrator need to configure the certificate profiles?
A: Yes. Profiles are configured in DigiCert ONE, but used in ServiceNow.
Release 1.6.0
- New features
- Certificate renewals support - Users receive reminder emails for certificate renewals. Admins can trigger reminder emails manually using the Resend Renewal Email button. Users/Admins can renew certificates via the Renew button on the certificate details page. Renewal requests will appear under the Pending Certificate Requests page for approval actions (Approve, Reject, or Cancel). Upon approval, the renewal certificate is delivered similarly to the base certificate. Successfully renewed certificates are listed on the Certificates page after pickup.
- Multiple key sizes support - When creating a profile with multiple key sizes: Supported certificate profiles are synced with ServiceNow. During certificate requests, all allowed key sizes are displayed to users. Requesters can now provide CSRs for any of the supported key sizes.
- Improved user experience
- Pending Certificate Requests page - Now displays requests filtered by their Pending Approval state by default, instead of showing all statuses. The Pending certificate requests page, which previously displayed only Pending Approval or Approved statuses, now supports status updates after approval. If any issues arise post-approval, the status of an approved certificate will be updated accordingly.
- Certificate navigation - Users can navigate seamlessly from: Pending Certificate Requests > Certificate Request # > Certificate Information > View certificate. This simplifies the process and enhances accessibility to certificate details.
- DC1 platform configuration for Admins - A UI configuration screen now enables ServiceNow admins to set the DC1 platform URL the SNOW TLM app connects to. Admins can configure the domain regardless of whether it’s from internal DigiCert instances or a customer’s ServiceNow instance. An ‘Others’ dropdown option allows admins to input the desired domain via a text box manually.
- REST API enrollment: Certificate as attachment - For REST API enrollment requests, certificates are now sent as attachments in the delivery email. This enhances the ease of access for recipients.
- Bug fixes
- SAN/SDN value support - Resolved issues with Fixed value of Subject Alternative Name (SAN) and Service Directory Number (SDN) values.
You need a DigiCert ONE account and access to DigiCert ONE Trust Lifecycle Manager.