Azure AD (Entra ID) User provisioning - OAuth option missing, only Basic Auth
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-01-2024 02:19 AM
Hello guys, I have problem - During setup of User/Group provisioning from AzureAD I am not able to select other than Basic Authentication.
Do you know , or do you have experience with implementation user provisioning with OAuth ?
I saw documentation from SN and even Microsoft , crazy, lack of information...
https://docs.servicenow.com/bundle/vancouver-platform-security/page/integrate/authentication/task/pr...
there is note : To populate the OAuth filed for provision with SCIM, you must update the application to SCIM 2.0 endpoint. - but Microsoft docs are so crazy you will never figure out how to set up in Azure.
so Just asking if someone knows or can redirect me in some way how to achieve OAuth supported provisioning.
Thank you very much !
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-25-2024 11:48 PM
It was momentarily made available but was riddled with issues (you can find some Support KBs on the issue). I wouldn't recommend using the solution because it doesn't properly use SCIM, so if a user has a department set in Entra ID (a string field) and that department (reference) doesn't exist in the Department table in ServiceNow, the provisioning will fail. You have no ability to transform the data in ServiceNow (which you would be able to if you used SCIM) so it provides very limited usability.
Be careful using this solution, as it uses Basic Authentication only (Microsoft has hinted at an OAuth2.0 release for it in Q1 2024, but still nothing...) and not proper SCIM.
