Join the #BuildWithBuildAgent Challenge! Get recognized, earn exclusive swag, and inspire the ServiceNow Community with what you can build using Build Agent.  Join the Challenge.

SNOW integration with Active Directory for Authentication- Help Needed

Rahul Priyadars
Tera Sage

‎01-29-2018 02:13 AM

Hi All,

We need to achieve below 2 use cases. (SNOW - JAKARTA PATCH 4)

(1) populate USER table for SNOW with Active Directory (AD) people data.

(2) Authenticate users of SNOW using Active Directory User ID and Password.

First we achieved with the help of a Mid Server . We are able to pull people data from AD and pushed to SNOW User table . This is working fine. (using LDAP on 389 with Mid Server).

Now I am working on authentication of users using Active Directory Credentials. - I read that mid server do not support AD authentication. So please suggest how to achieve?

In my thought

(1) Do we have to configure a LDAPS (with certificate) server on SNOW and open port 689 on firewall?

(2) Expose/ Create new AD server in DMZ and use that for authentication?

(3) Or i am missing any trick here? Also tried making source=ldap in user table and tested with some profile but AD authentication not worked.

Regards

RP

0 Helpfuls
  • 4,832 Views
11 REPLIES 11

Rahul Priyadars
Tera Sage
In response to snow_dev

‎01-29-2018 03:55 AM

Hi Ashish,


Thanks for the reply.



make sure to import "password" attribute along with other attributes. This will ensure that users will use their AD password for login at ServiceNow. --> Is This really Possible that i can import AD password in SNOW User Table and SNOW will read the way Password is encrypted and stored in Active Directory store?



On SSO- we have a peculiar situation - To login on laptop we have AD -1. Now Another AD-2 is hosted in private Cloud. I just need to do authentication using AD-2.



Regards


RP


0 Helpfuls

Surendra Raika1
Kilo Guru
In response to Rahul Priyadars

‎01-30-2018 03:16 AM

Are not able to reach ADFS endpoint too?


0 Helpfuls

Rahul Priyadars
Tera Sage
In response to Surendra Raika1

‎02-02-2018 12:24 AM

We are going to Do using ADFS (AD Federation Services). We are in process of setting up ADFS server.



Regards


RP


0 Helpfuls

Surendra Raika1
Kilo Guru
In response to Rahul Priyadars

‎02-02-2018 03:05 AM

Cool



You still active in Remedy Forum/Community btw??  


0 Helpfuls

Rahul Priyadars
Tera Sage
In response to Surendra Raika1

‎02-02-2018 04:02 AM

This is amazing that you know me since Remedy Days. I am not much active on Tech forum of remedy,   as my current Implementation is on SNOW. Its been a long journey there which is now over i think.



Regards


RP


0 Helpfuls