Setup Oauth authentication in serviceNow so that external user can only login using it

Community Alums
Not applicable

‎03-27-2024 07:46 AM - edited ‎03-27-2024 10:30 PM

Hi Experts,

 

Can anyone guide me:

Part1 : To Setup Oauth authentication in serviceNow so that external user can only login using it login in our instance instead of simple username and password and create records in incident table of our instance.

Part 2: Also are we required to create a record in sys_user table for that external user?

Please help!

0 Helpfuls
  • 1,744 Views
6 REPLIES 6

Robbie
Kilo Patron
Kilo Patron

‎03-27-2024 08:00 AM

Hi @Community Alums,

 

Short answer to what could be quite a big conversation, in order for authentication to occur using Oauth or leverage a tool such as Okta or Sailpoint, the user does need to exist in ServiceNow (within the sys_user table).

 

Typically, the user would already exist within a tool such as Okta, and it would be created in ServiceNow as part of the initial setup and sync as new users are onboarded.

 

To help others (or for me to help you more directly), please mark this response correct by clicking on Accept as Solution and/or Helpful.

 

Thanks, Robbie

Community Alums
Not applicable
In response to Robbie

‎03-27-2024 10:31 PM - edited ‎03-27-2024 10:32 PM

Thanks @Robbie for answering part 2 of the question, can you please help with the 1st part as well?

0 Helpfuls

Robbie
Kilo Patron
Kilo Patron
In response to Community Alums

‎03-28-2024 02:00 AM

Hi @Community Alums,

 

Can you expand at all as to which tool or application you want to setup OAuth for? Generically however, 

ServiceNow has some step by step instructions (with click-throughs to other links) on how to set this up here: https://docs.servicenow.com/bundle/utah-platform-security/page/administer/security/task/t_SettingUpOAuth.html

 

To help others (or for me to help you more directly), please mark this response correct by clicking on Accept as Solution and/or Helpful.

 

Thanks, Robbie

0 Helpfuls

Randheer Singh
ServiceNow Employee
ServiceNow Employee

‎03-31-2024 11:57 PM

Hi @Community Alums ,

You can use the OAuth Authorization code flow to achieve the desired outcome. Here is the product documentation. from the 3rd part application/client, the user will initiate the flow, and complete the login on the ServiceNow instance. The user will then authorize the client to make an integration call on its behalf.

for this flow to work the user record must be present in the sys_user table if you are using a ServiceNow username/password-based login flow. if you are using SSO for user login then you can enable automatic user provisioning to create users at run time.

Thanks,

Randheer

0 Helpfuls