Setup

This setup must be completed before running the setup utility on each MID Server. For more information, see Running the Setup Utility on Each MID Server.

Supported Credential Types

The following credential types are supported and can be validated as part of the integration:

  • Windows

  • JDBC

  • Kubernetes

  • Azure Service Principle

  • SSH

  • SSH PrivateKey

  • SNMPv3

  • SNMP Community

  • JMS

  • VMware

  • Active Directory Account

Step 1: Install the MID Server Plugin

To obtain the required setup utility and integration files, install the Delinea Credential Resolver plugin from the ServiceNow Store.

Option A: Installing the Integration Plugin via the ServiceNow Store

To install the plugin automatically:

  1. Go to ServiceNow Store.

  2. Search for Delinea Credential Resolver.

  3. Select Install.

  4. Follow the prompts to deploy the plugin into your ServiceNow instance.

    Once the plugin is downloaded you should have the following files:

    • DelineaCredentialResolver-5.0.1

  5. Download the utilities from this location and then locate and extract the utility.

This plugin contains both the platform-side resolver logic and the utility JAR archive used for MID Server setup.

Option B: Installing the Integration Plugin via Manual XML Import

To manually install via XML Import:

XML installation is mandatory starting from the Xanadu version when the application is not installed through the ServiceNow Store.

If you are unable to use the ServiceNow Store for installation or prefer a manual setup, you can import the necessary XML files into ServiceNow.

Download the most recent Delinea Credential Resolver version from this location.

To import an XML file into ServiceNow using the Mid Server integration:

Unzip the downloaded file.

The extracted file should contain the following files:

  • DelineaCredentialResolver-5.0.1

  • DelineaMidServerCLIUtility-1.0.jar

  • DelineaMidServerUIUtility-1.0.jar

Uploading the XML file will also install the required JAR files when performing a manual installation. If you are using any version before Xanadu, you may continue to install the application by simply adding the required JAR files and skipping the XML installation process.

Steps to Import an XML File

  1. Log in to ServiceNow.

  2. Go to the All tab and select Retrieved Update Sets.

  3. Select Import Update Set from XML.

  4. Choose the unzipped XML file, then select Upload.

  5. After the import, locate the file under Retrieved Update Sets.

  6. Open the uploaded file and select Preview Update Set.

    7. If you see an error after the preview, select it and then select Accept the Remote Set from the dropdown. Accepting those errors won’t affect integration functionality.

  7. Verify that the state is changed to Previewed.

  8. Select Commit Update Set.

  9. Once committed, the state changes to Committed, indicating the integration installation is complete.

    10. When the Credential Resolver installation is complete, proceed to configure the corresponding product:

Step 2:(Optional) Adding SSL Certificate to MidServer

Optionally, SSL certificates can be added to the MID Server for secure communication.

If the certificate for the site is published from an internal Active Directory Certificate Authority (CA) or an internal self-generated certificate, that certificate needs to be added to the MID Server Agent’s local Keystore for Java.

ServiceNow has documented the method for adding the certificate which can be found here.

The following steps are the additional details to the ServiceNow documentation.

  1. Download your SSL certificate for the Secret Server to where the MID Server is installed.

    1. One way to get the certificate is to go to a Secret Server website.
    2. Click the Site icon on the address bar.
    3. Select Certificate > Details > Export and save it in the format Der-encoded binary (.cer).
  2. Open a terminal and set the location to the Java bin directory:MID_Server\agent\jre\bin

  3. Run the following command and replace it with your environment specifics:

    keytool -import -alias certificateAliasName -file "full path to\example.cer" -keystore "MID_Server\agent\jre\lib\security\cacerts"
    • -alias – a meaningful name for your certificate alias.
    • -file – the path of the exported .cer certificate from the browser.

  4. You will be prompted to provide the password for the Keystore. The default password is changeit.

  5. You will get another prompt asking if you trust the self-signed certificate. Select Yes, and the certificate will be imported into the trust store.

  6. (Optional) List all the certificates and check your alias name:

    keytool -list -keystore "$JAVA_HOME\lib\security\cacerts"

  7. Restart the MID Server Service.

Step 3: Locate and Extract the Setup Utility

After installing the plugin, locate the JAR archive deployed to the MID Server file system.

JAR File Installation

  1. Go to MID Server > JAR files and select New.

  2. In the Name and Version fields, provide details of the DelineaCredentialResolver.jar file.

  3. In the Source field, provide the location of the file.

  4. Select Submit or Update.

  5. Restart the MID Server service

To extract the setup utility:

  1. On your MID Server host machine, navigate to the plugin’s installed directory:

    • <MID Server Root>\agent\extlib

  2. Locate the archive that includes:

    • DelineaCredentialResolver-5.0.1

    • DelineaMidServerCLIUtility-1.0.jar

    • DelineaMidServerUIUtility-1.0.jar

  3. Extract the archive using a ZIP utility.

  4. Move DelineaMidServerCLIUtility-1.0.jar and DelineaMidServerUIUtility-1.0.jar to a known location for running in the next step.

Step 4: Run the Setup Utility on Each MID Server

The DelineaMidServerUIUtility-1.0.jar supports both UI mode (version 5.0+) and command-line mode. For headless Linux systems without a graphical environment, use the DelineaMidServerCLIUtility-1.0.jar for command-line mode as described in the manual configuration section.