This article is for implementing single sign on. This will be helpful for those who are new to this topic.
Single sign on can be setup using various ID provider. The article shows the steps for setting up the SSO by various ID providers.
NOTE: Make sure that all the users are registered with the ID provider and those emails or ids are present in SNOW
- By Open ID Connect
External Single Sign On:
In this type of authentication, while logging in to ServiceNow we can get the options for authenticating by using Google, OKTA, Azure, any other identity provider.
- Enable Multi-Provider SSO plugin
- Configure Multi-Provider SSO Properties
- Once the Enable multiple provider SSO is checked, the system gives an option for “Login with” on the login page
- Create an application in ID provider to get the Client ID and Client secret, which is used in setting up the ID provider in servicenow
- In Google Console Create an application (https://console.cloud.google.com/)
- Create credentials:
- Once the application is created in the Google console and got the Client ID and Client Secret, go to next step
- Create an Identity provider in ServiceNow
Once all set up, make sure that you have a user in the system with the same email by which you are going to authenticate.
Try to login:
Any user who has a gmail account and whose email is present in SNOW database will be able to login by this integration.
2. By SAML
Demo SSO provider used here is ssocircle.com
- Create account on ID Provider, SSOCircle
- Get SSOCircle Metadata
- Create ID provider in SNOW and update Metadata there
- Get SNOW MetaData
- Update in ID provider on ssocircle
- Test connection
- Set redirection
- Done
- Test your SSO login
I hope these quick steps will help the users who are looking for the quick steps for setting the SSO.
Thanks
