Active Directory integration (LDAP integration) with Service Now.

Go to solution
arijpaul
Kilo Explorer

‎08-29-2017 01:08 AM

Hello All

I have setup Active Directory integration with Service-Now instance. On the Service Now instance when I test the connection it shows as "Connected successfully". And when I "browse" and filter with the Distinguished Name it shows the objects. However I am unable to access the Service Now instance login page using my domain credentials. Whenever I try to access the login page it asks for credentials. When I enter my domain credentials it states that username or password is invalid. SSO is also not working. Ideally we should be able to login to the Service Now console via SSO using the same domain credentials.

So both SSO and even manually providing the domain credentials is failing?

Can someone say if I am missing something?

0 Helpfuls
  • 9,822 Views
1 ACCEPTED SOLUTION

Go to solution
corina
ServiceNow Employee
ServiceNow Employee

‎08-29-2017 11:12 PM

Hello Arijit.



You would need to import them.


You can start with a test import on your dev/test instance of course.


Under LDAP-Server


you have   Test load 20 records   or Load all records


LDAP type data source



After you loaded the records you map them to your sys_user table for example ( should you import users).



It goes the same way as a normal import.



More details about the LDAP integration here:


LDAP integration


View solution in original post

0 Helpfuls
36 REPLIES 36

Go to solution
corina
ServiceNow Employee
ServiceNow Employee
In response to arijpaul

‎08-31-2017 03:45 AM

In the system logs - search by : message contains saml, created on today.


0 Helpfuls

Go to solution
arijpaul
Kilo Explorer
In response to corina

‎08-31-2017 03:52 AM

SNow-Logs-1.JPG



Couldnt find anything. This is all I got as error


Preview file
37 KB
0 Helpfuls

Go to solution
corina
ServiceNow Employee
ServiceNow Employee
In response to arijpaul

‎08-31-2017 03:53 AM

This is becuase debug is not enabled.


Open an incident with us now, I will need to check your instance,


0 Helpfuls

Go to solution
arijpaul
Kilo Explorer
In response to corina

‎08-31-2017 03:58 AM

I am not sure how do I open an incident. I think I dont have permissions to do so.



The only thing which is worrying me is I cant login to the instance normally which I was previously able to do.


0 Helpfuls

Go to solution
corina
ServiceNow Employee
ServiceNow Employee
In response to arijpaul

‎08-31-2017 04:01 AM

This oyu can check with someone in your organisation. Someone can open for you.


If you are logged in already, you can go and disable both properties.



https://yourinstance.service-now.com/sys_properties_list.do?sysparm_query=nameLIKEmultisso


and https://yourinstance.service-now.com/nav_to.do?uri=sys_properties.do?sys_id=ee45121ec0a8011b00092666...



Just put them false


Like this you will login again with your local credentials.


0 Helpfuls