Export an active directory (AD) client authentication certificate in your Windows machine to map the exported certificate to the user on the ServiceNow instance.

Before you begin

Do this task in your Windows machine.

Role required: admin

Procedure

  1. In your Windows machine, from the Search menu, enter Manage computer certificates.
  2. To export the client authentication certificate, do the following actions:
    1. In the Certificate Manager tool, navigate to Certificates - Local Computer > Personal > Certificates.
    2. Right-click the client authentication certificate, select All Tasks, and then select Export....
    3. In the Welcome to the Certificate Export Wizard dialog box, select Next.
    4. In the Export File Format dialog box, select the Base-64 encoded X.509 (.CER) file format, and then select Next.
    5. In the File to Export dialog box, select the file name location in the File name field or select Browse to save the certificate file, and then select Next.
    6. In the Completing to the Certificate Export Wizard dialog box, select Finish.
    7. After the export is complete, in the Certificate Export Wizard dialog box, select OK.
  3. To rename the file extension of the exported client authentication certificate, do the following actions:
    1. Locate the exported certificate file.
    2. Right-click the certificate file and select Rename.
    3. In the file name, rename the file extension from .cer to .pem.
      For example, change the User CA.cer file name to User CA.pem.
    4. In the confirmation dialog box, select Yes.

What to do next

Map the PEM certificate to the user. For more information, see Map the PEM certificate to user.