SSO Bypass
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-19-2023 02:10 AM
Hello community,
I read about the SSO Bypass option side_door.do
Is this option excluded now in ServiceNow regarding the Security Issues? It seems not to be working (anymore). Also if logged out prior to attempting to access it. It redirects to navpage.do.
Is the Recovery User for SSO meant to be the alternative or am I missing another option for that?
Thanks in advance!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-19-2023 07:06 AM
Pretty sure recovery user disables side_door access for all users except the recovery users.
And for the recovery user, if they login bypassing SSO, they will only have access to the SSO configs to fix or disable SSO. They won't be able to do anything else in SN.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-19-2023 07:42 AM
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
04-20-2023 06:59 AM
Hi Mike,
I don't really get how side_door determines between users? Can you explain? Also Recovery User is mandatory for enabling SSO so logically that would mean only Recovery Users can ever access side_door? Then again, how does side_door refer to any user at all?
I looked into the documentation and set up a record in the table. Trying to login with /side_door.do always shows a redirection screen with "session timed out". Prior to that I am not logged in, in any other browser tab or incognito. I heard this can be a problem.
Does anybody have side_door up an running?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
11-27-2024 06:59 AM
Always use side_door in a clean/fresh/incognito browser window for best results.
