OKTA and multifactor authentication

lukesmitty · ‎09-26-2016

We currently use OKTA for SSO but I was wondering if anyone has used multifactor authentication with it and ServiceNow? We are exploring it for our elevated system admin access. Also, do you know if there are additional servicenow logging options to keep track of system admins logging into the system?

I did find this but was wondering more about OKTA and its options for this vs using google authenticator....

Here is a link with more information regarding Geneva's ability to utilize two factor authentication https://docs.servicenow.com/integrate/authentication/concept/c_MultifactorAuthentication.html

One thing to point out is "This feature supports only the Google Authentication mechanism as the token provider. Users should install the recommended Google Authenticator application to their mobile devices"

Thanks,
Luke

tony_barratt · ‎09-26-2016

Hi Luke,

From the doclink you mention, there is a requirement to have user names and passwords stored in the instance's database.

Does that apply in your scenario?

Multifactor authentication

..

Multifactor authentication works with the LDAP integration. Multifactor authentication does not work with SAML.
Multifactor authentication is available with any authentication method that works with user name and passwords stored in the instance's database, which are:
- Approval with e-signature
- Multiple provider single sign-on

Best Regards

Tony

lukesmitty · ‎09-27-2016

No we do not need to store passwords in our instance. We rely on Okta SSO and our AD accounts.

Thanks,

Luke