Is there any way, mobile app bypass SSO to log in with local account?

Nithish1 · ‎03-20-2018

Hello Everyone,

Is there a way to bypass the SSO login so that I can log in with a local ServiceNow account when using the mobile(ios) app?

Regards,

Nithish

mukulgupta · ‎03-20-2018

Hi There!

You will just need to make sure that glide.authenticate.sso.redirect.idp system property is empty in the instance if already existing on the instance.

NOTE: When logging in via Browser users will need to:

- Navigate to https://<INSTANCE>.service-now.com/login.do

- Click External Login

- Then will need to type their corresponding User ID (user_name ) to get redirected to SSO login.(ONLY for the first time).

NOTE: Once the users are correctly redirected to the IDP SSO login and they successfully login then a cookie (glide_sso_id) will be saved on their browser to do auto-redirect to the IDP for SSO login from the next time which they just type instance URL: https://<INSTANCE>.service-now.com/

NOTE: Make sure the sys_user record have correctly configured SSO source for the user record to get re-directed to the correct IDP for SSO login. In the SSO Source field for SAML users enter:

sso: <followed by the sys_id of the identity provider's record>
as shown in the screenshot below:

In the above-mentioned way, Users can successfully do local login on the ServiceNow Mobile App while auto-redirecting to the IDP for SSO login via Browser.

Please let us know if the shared info was helpful by marking the response as Helpful.

Feel free to reach out if you have any additional questions.

Best Regards,

Mukul Gupta @ ServiceNow

Saai1 · ‎03-22-2018

Hi Mukul,

If I turn that off, no customers can login to our ServiceNow. Is there any other way we can use this?

Thanks,

Nithish

warren_chan · ‎11-12-2019

Mukul,

What should I do if I do not want to disable the "glide.authenticate.sso.redirect.idp" property? For desktop users, local admins can always log in by appending the /login.do or /side_door.do in a browser window. For the mobile app, this is no longer possible.

I understand the suggestion of disabling the property and having the users select external login manually, but that seems like a cumbersome workaround for many people just trying to login. It seems like the best solution would be the other way around, where there's an option to use local login on the login screen of the mobile app.

Warren

gaf627 · ‎12-18-2019

Warren,

Did you ever find a solution? We have the same issue and do not want to disable the "glide.authenticate.sso.redirect.idp" property.