Howto assign groups and roles in SN when use automatic user provisioning from Azure AD

JohnDF · ‎02-28-2022

Hi everyone,

when i follow this tutorial https://docs.microsoft.com/en-us/azure/active-directory/saas-apps/servicenow-provisioning-tutorial

i can automatic user provisioning user from the azure ad to the sn instance. But how I get the Groups and Roles from the Azure AD to SN? Is this possible? What whould be the best practice way to achieve this?

What roles get the user when I import them from the azure ootb? How can I give them roles? Becasue SN has other roles in the system than Azure?

Thanks for your help.

Maik Skoddow · ‎03-04-2022

Hi @JohnDF

I also took your referenced article when I configured Azure AD provisioning for a previous customer and basically you find there everything you need.

On Azure AD you have to configure the groups you want to sync with ServiceNow. And after the first sync you can assign roles to the created groups at ServiceNow. These roles all users will inherit from the respective groups they are a member of.

Kind regards
Maik

View solution in original post

Maik Skoddow · ‎03-04-2022

Hi @JohnDF

I also took your referenced article when I configured Azure AD provisioning for a previous customer and basically you find there everything you need.

On Azure AD you have to configure the groups you want to sync with ServiceNow. And after the first sync you can assign roles to the created groups at ServiceNow. These roles all users will inherit from the respective groups they are a member of.

Kind regards
Maik

Maik Skoddow · ‎03-16-2022

Hi @JohnDF

In case you think I was able to answer your question, I would be happy if you mark the appropriate response as "correct" so that the question will appear as resolved for other users who may have a similar question in the future.

If not, please tell me what you are still missing!

Many thanks & kind regards
Maik