Hi @Devika3 

I had documented this earlier for my org, PFB -

1. User Triggers Flow:

   • A user action in Flow (e.g., "Add user account" or "Create user") initiates the authentication process with Azure AD.

2. Azure AD Authentication:

   • ServiceNow redirects the user to Azure AD's login page.
   • The user logs in, and Azure AD validates the credentials.
   • If successful, Azure AD redirects the user back to ServiceNow with an authorization code.

3. Retrieving Access Token:

   • ServiceNow captures the authorization code and exchanges it for an access token by making a secure request to Azure AD's token endpoint.
   • The request includes the authorization code, ServiceNow's application ID, and client secret.

4. Access Token Usage:

   • ServiceNow stores the obtained access token securely.
   • The access token is used to make authorized requests to Azure AD's Graph API for user information or to perform actions based on the user's permissions.
   • This allows Flow to complete the triggered action, such as creating a user account in ServiceNow based on Azure AD user data.

5. Backend Process:

   • The Application Registry securely stores ServiceNow's application ID, client secret, and Azure AD configuration details.
   • ServiceNow retrieves these credentials from the Application Registry when initiating the authentication flow with Azure AD.

The Application Registry acts as a secure repository for storing sensitive information required for authentication and authorization.

Please, don't forget to mark my answer as correct if it solves your issue or mark it as helpful if it is relevant for you!

Regards,
Tushar