Incetance access Fixed IP & SSO
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
2 hours ago
We provide a store application for our customers.
We would like to configure access to the ServiceNow instance as follows:
Customer users:
Users authenticate via Single Sign-On (SSO) integrated with Microsoft Azure Active Directory.
Login using a ServiceNow username and password is disabled, and only SSO authentication is allowed.
ISV users:
Access is restricted to fixed IP addresses.
Users authenticate using a combination of ServiceNow username/password authentication and multi-factor authentication (MFA).
Could you please advise on the concrete configuration approach for this setup, and share relevant ServiceNow documentation and community articles for reference?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
6m ago
1. For SSO of customer user - Configure Azure AD as Identity Provider (IdP) :KB0960680 Setup of Azure AD (Entra ID) with SSO on ServiceNow
- Navigate to Multi-Provider SSO > Identity Providers and create a new SAML2 IdP configuration.
- Import metadata from your Azure AD tenant or configure manually following the above KB .
- Test the connection and activate the IdP.
Use the Adaptive Authentication framework to create a policy that specifically blocks local logins for customer users (or all users, with exceptions for ISV users). //refer: "Adaptive authentication" or how to restrict access to users based on a specific criteria
