SSO Authentication Through REST API
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
06-12-2019 12:19 AM
Hello Team ,
I'm new to ServiceNow REST API . I'm trying to build a tool which would do ticketing tasks through a powershell client module .
The current SNOW instance that i'm working with requires a SSO login for it to authenticate a SNOW session .
even if i try with local login through the https://instancename.service-now.com/login.do it does not let me login since the settings for Local Login Credentials are disabled by the client . (they would not enable it due to security reasons .
Is there a way that we can bypass this or try login using the SSO credentials and authentication ?
Any related help or guidance would be extremely valuable .
Restricted local login is explained here :
Thanks in Advance for the help .
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
06-12-2019 12:30 AM
Hello,
Rest works using the basic authentication and you would require an id/password to make REST queries to the instance. The access to tables is also controlled based on this ID.
Have you tried to make a REST call with a local Id using any external tool? It does not go through the front end UI login screen, and could bypass the check.
Thanks!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
09-17-2019 12:15 AM
Hi,
I have the same issue. I have tested, using a local ID and postman and works OK, but not through SSO; is that normal?
Thanks,
Moises
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-11-2021 05:50 AM
have you solved this ?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
06-17-2022 01:44 PM
With the current version of SNow, we were able to use the REST API to pull/push data with out any issues. New recent requirements in our system is that the 'SSO Source' field on the sys_user records is now filled in with a value for single sign on. Since this was added, we are no longer able to make the REST API calls. Creating second user accounts locally for users defeats the purpose of the SSO being enabled in the first place. Other REST API integrations allow you to use SSO to obtain a credential key, which you would use in all future calls, until it timed out. With SNow being as large as it is, and around for as long as it has, I am surprised this has not been implemented yet.
