How to enable 'Auto redirect IdP' for multiple Identity providers?

Suggy · ‎11-02-2022

We have multiple identity providers configured. We want to enable 'Auto redirect IdP' for all of them.

I see that at a time we can activate that for only ONE IdP.

How to enable it for multiple IDP's?

Suggy · ‎11-17-2022

No one?

Matt_dev · ‎03-18-2024

Hey @Suggy,

Did you manage to sort this as I'm facing a similar requirement right now.

Ryan Duce · ‎03-18-2024

Auto-redirect IdP for multiple single sign-on providers is not possible.

It's worth bearing in mind that auto-redirect IdP applies only if the following all apply:

The user is not already logged into ServiceNow.
The user has not already selected a preferred IdP to log in to ServiceNow (a cookie would be stored in the browser)
The user navigates to a ServiceNow URL that doesn't include the glide_sso_id parameter.

You can force a user to log in with a specific IdP by adding ?glide_sso_id=<sys ID of IdP> parameter to the URL, or by using service-provider-initiated single sign-on e.g. by selecting ServiceNow from the M365 app tray.

What specific use case are you trying to address?

Matt_dev · ‎03-18-2024

Hi @Ryan Duce,

Thanks for your reply point 2 of your list gives some hope for us.

The use case is that our colleagues will use Azure AAD as their SSO source and should be able to access the instance without having to re-login or their experience shouldn't have to change.
But our Alumni's would use Microsoft B2C to access the Alumni portal which they would preferably access correctly by using instance-url/asc

Ryan Duce · ‎03-18-2024

I would consider using a Custom URL to handle this. Something like app.domain.com for your colleagues and alumni.domain.com for alumni. You can set specific IdPs to run on accessing those custom URLs.