Why system is allowing third party users in servienow?

ShobhikaR · ‎03-13-2025

In the system a third party user logged into our portal of some other company domain. We tried to replicate the issue in the lower env but we couldn't able to log in. Is there any OOB functionality so as to resolve this issue and prevent the allowing of third party user into our system. Can someone help me in this?

Dr Atul G- LNG · ‎03-13-2025

Hi @ShobhikaR

It’s simple: if a user has valid credentials and the correct instance URL, they can log in, whether it's a third-party service or an internal system. The case you mentioned seems to imply that the user must have the required username and password to log in. My concern is whether a user could still log in even without having a valid username and password.

*************************************************************************************************************
If my response proves useful, please indicate its helpfulness by selecting " Accept as Solution" and " Helpful." This action benefits both the community and me.

Regards
Dr. Atul G. - Learn N Grow Together
ServiceNow Techno - Functional Trainer
LinkedIn: https://www.linkedin.com/in/dratulgrover
YouTube: https://www.youtube.com/@LearnNGrowTogetherwithAtulG
Topmate: https://topmate.io/atul_grover_lng [ Connect for 1-1 Session]

****************************************************************************************************************

Mark Manders · ‎03-13-2025

Not without knowing what exactly happened. And the fact that you can't reproduce it, makes it even more difficult. Depending on your setup, a user should only be allowed to login if he's known in the system.

But we are lacking information about your setup and what exactly happened.

Please mark any helpful or correct solutions as such. That helps others find their solutions.
Mark