Configure Different SSO Providers for Employee Center and CSM Portal
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
3 hours ago
Hi everyone,
I'm looking for guidance on configuring different SSO providers for two different portals in ServiceNow
My goal is to ensure that users accessing each portal see only the relevant SSO option and are redirected to the correct Identity Provider.
Has anyone implemented a similar solution? If so:
- Is this the recommended approach?
- How did you configure different login pages for Employee Center and the CSM Portal?
- Are there any best practices or limitations I should be aware of, especially with Multi-Provider SSO or Employee Center?
Any documentation, examples, or implementation steps would be greatly appreciated.
Thank you!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
20m ago
Hi @AvinashU,
Yes, this is a supported, out-of-box pattern now: portal-specific authentication, shipped in the Australia release, lets each Service Portal record (Employee Center and the CSM portal both sit on sp_portal underneath) carry its own login configuration instead of everyone inheriting one instance-wide IdP. No custom login widget or redirect script needed.
Before you touch either portal record, verify these:
- Multi-Provider SSO plugin (com.snc.integration.sso.multi.installer) is installed and glide.authenticate.multisso.enabled is true.
- Each relevant Identity Provider record has "Show as Login option" checked, otherwise it won't show up as a selectable choice on the portal.
- On each portal record under Service Portal > Portals, "Use portal-specific authentication" is enabled.
- The Portal Identity Providers field (it's a GlideList) is set to only the IdP(s) you want that portal's users to see, Okta for Employee Center, Azure AD for CSM, or whatever your split is.
- "Enable early redirection" is turned on only if you want a single-IdP portal to skip the login page entirely and jump straight to the IdP.
- "Enable local login" is set per portal depending on whether you still want a fallback username/password option.
The main gotcha people hit is forgetting that "Show as Login option" gates the whole thing, an IdP configured correctly but missing that checkbox just silently won't appear on any portal's Portal Identity Providers list.
If you're on a pre-Australia release, that field set won't exist yet and you'd be stuck customizing the Login widget to render SSO buttons per portal manually. Happy to go deeper if you can share your release and current Multi-Provider SSO setup.
References
Thank you,
Vikram Karety
Octigo Solutions INC