Expand my Community achievements bar.

JWT to OAuth Migration

Avatar

Level 1
Level 1
7/17/24 3:22:05 AM

Starting in 2020 and continuing until today, we have been using a JWT credential between ServiceNow and Adobe. As part of the credential creation, we used OpenSSL to create a public and private key, creating a project in Adobe, uploading the public key, creating an integration profile in ServiceNow, etc. As mandated by our information security rules, the certs created by OpenSSL were configured to expire after a year, requiring us to go through the process of renewing the cert and updating the integration.

With the impending deprecation of the JWT credentials, we have been receiving regular reminder emails from Adobe to take action, each saying that "your organization must update them to use the OAuth Server-to-Server credential" and providing links to the Migration Guide. However, there was one (and only one) email we received that had as actions to take:

"1. Update the integrations with newer certificates before the current ones expire and
2. Migrate the integrations to use the OAuth Server-to-Server credential before January 27, 2025...."

The certs we are using now will expire in a little over 30 days. Does the reading of 1. from that email mean that new JWT certs need to be in place before the migration to OAuth can occur? Or can I just proceed with the migration using the current certs and not worry about the soon approaching expiration date (IOW, does the migration negate the need to generate a new key pair)?

Views

359

Replies

2
Sign in to like this content

Total Likes

Translate
Translate
2 Replies

Avatar

Employee
Employee
7/18/24 2:25:19 AM

Hi @JosephKa2 

 

Ultimately your integration needs to be updated to use OAuth Server-to-Server credentials. There are two ways to get there - 

 

Route#1 Directly migrate to OAuth Server-to-Server credentials in the next 30 days

 

This is a viable route and will not involve creating a new certificate pair. However, make sure you can complete the migration before your existing certificate expires. (per the email you received)

 

Route#2 First refresh the certificate to give yourself more than 30 days, and then migrate to OAuth Server-to-Server credentials by Jan 27, 2025

 

This option is preferable if you cannot complete the migration before the existing certificate expires.

 

Both these approaches will avoid any integration downtime.

 

Thanks
Manik

 

Views

326

Replies

1
Sign in to like this content

Total Likes

Translate
Translate

Avatar

Level 1
Level 1
7/25/24 3:17:12 AM
In response to tmj

Manik, thank you for the confirmation.  We're going the option 1 route.  Appreciate it.

 

Joe

Views

274

Replies

0
Sign in to like this content

Total Likes

Translate
Translate
Related Conversations
I want to link Adobe Developer Console and LINEworks via API Solved

Views

241

Likes

0

Replies

6
Pass parameter to Dialog on Action button Click Solved

Views

150

Likes

0

Replies

3
How can we create a webhook to handle status change of order in adobe app builder

Views

65

Likes

0

Replies

0
How to configure to receive sales by email in my magento store

Views

88

Likes

0

Replies

0
Triggering an event to perform an action ,that will append a file at sFTP after 5 min

Views

164

Likes

0

Replies

4