Today, organizations suffer from increasing data sprawl. Information, assets, and processes from different vendors are spread across siloed applications, teams, and networks. From security to HR to customer support and beyond, no team is immune.
This level of disconnection hinders workflows, decreases efficiency, creates blind spots, and ultimately stifles agility across the entire organization.
To combat this digital spread, ServiceNow provides an intelligent digital transformation and IT automation platform designed to bring together an organization’s disparate systems into a single, cohesive interface.
One specific challenge organizations face is certificate sprawl. Certificates are at the foundation of cybersecurity, establishing authentication and encryption for every connected device, workload, and application — including the rapid expansion of agentic AI. Just like a password, certificates need to be rotated regularly to ensure the highest levels of security.
“Together, we’re helping customers prevent costly certificate outages, strengthen digital trust, and fully automate certificate fulfillment across the enterprise. By unifying visibility, workflows, and security intelligence, organizations can now manage certificates as seamlessly as any other digital asset — driving resilience, compliance, and continuous service uptime.”
— Sree Subramaniam, Sr. Director of Product Management, ServiceNow
Rising Demands Call for Smarter, Scalable Management
The ever-increasing number of certificate requests, renewals, and approvals across multiple platforms and vendors stretches security teams, who must keep track of all certificate statuses and workflows for approvals and follow-ups — all while handling an influx of requests for new certificates.
This is a recipe for:
- Expired certificates leading to service outages
- Rogue teams setting up non-compliant certificate authorities (CAs) just to meet a deadline
- Blind spots in security that can be exploited by bad actors
As a leader in PKI and certificate lifecycle automation, Keyfactor is excited to announce multiple new integrations with the ServiceNow platform — from certificate discovery and issuance to lifecycle automation and vulnerability visibility. These integrations underscore Keyfactor’s commitment to simplifying PKI and certificate management by connecting it to the same operational platform organizations use to run IT, respond to incidents, and drive automation across the enterprise.
Keyfactor Command and ServiceNow ITOM + ITSM
Keyfactor Command gives users full visibility, orchestration, and automation across their entire PKI and certificate landscape from one platform. With its new integration into the ServiceNow platform, organizations can now manage certificate lifecycles at scale — automating the heavy lifting of discovery, issuance, renewal, and revocation across public, private, and cloud-based certificate authorities (CAs).
These capabilities are powered by ServiceNow IT Operations Management (ITOM), enabling centralized control and continuous monitoring of certificates across hybrid environments. Keyfactor Command APIs allow operations teams to integrate certificate events and actions directly into the broader ServiceNow ecosystem, streamlining workflows and reducing risk.
At the same time, the integration extends into ServiceNow IT Service Management (ITSM). Organizations can quickly publish certificate lifecycle actions — such as request, renewal, or revocation — as catalog items, giving users a familiar, self-service interface to request certificates with governance and approval built in.
When certificate issues do arise, expiration alerts can automatically trigger incidents, making it easy for help desks to respond, route, and resolve certificate-related service disruptions within the same workspace they already use.
Together, these integrations bridge operations and service delivery — ensuring visibility, responsiveness, and control.
Keyfactor EJBCA and ServiceNow ITOM
By popular demand, ServiceNow has implemented a native integration between the ServiceNow ITOM platform and Keyfactor EJBCA Enterprise via the ACME protocol.
Now, organizations can save time and reduce human error by allowing systems and users to request, renew, and revoke certificates directly from EJBCA — the most widely used and trusted private PKI platform — through an intuitive and familiar interface.
The integration is available with the Zurich release of ServiceNow.
Keyfactor AgileSec Analytics and ServiceNow Vulnerability Response
Keyfactor AgileSec Analytics is a cryptographic discovery and analysis solution that empowers enterprises to quickly scan systems, build an inventory of cryptographic assets, detect hidden vulnerabilities, and proactively monitor cryptographic health. Through integration with ServiceNow Vulnerability Response, customers can automatically detect and track cryptographic vulnerabilities, escalate them to the right teams, and ensure remediation stays on track—all from within the ServiceNow platform.
Learn more and watch a demo of the AgileSec integration in this blog post.
Coming Soon: Keyfactor Command and Service Graph Connector
Coming soon, ServiceNow customers will gain an even clearer view of the status of all their certificates — active, revoked, and even expired — directly within the CMDB.
Using Keyfactor Command APIs, ServiceNow ITOM will automatically discover and ingest certificates from CAs, endpoints, networks, and cloud platforms, importing certificate metadata into the ServiceNow CMDB where it can be visualized alongside other managed assets and services.
This expanded visibility helps organizations take control of certificate sprawl and enforce consistent management policies — without losing sight of the bigger picture.
