Avoid multiple logins

Fabio Cresta
ServiceNow Employee
ServiceNow Employee

‎03-06-2023 07:07 AM - edited ‎03-06-2023 07:08 AM

Hi All.

I need to avoid a user to login multiple times with the same userid.

I tested the 'Limit concurrent sessions' plugin, but it works this way:

 

1. user A logs in

2. user A logs in again from another browser

3. The first session of user A is dropped and the second is maintained

 

The need I have is:

1. user A logs in

2. user A try to login from another browser

3. The system should reject the second login and maintain the first session active

 

Is there a way to achive that?

Thanks

Fabio

0 Helpfuls
  • 1,477 Views
2 REPLIES 2

Community Alums
Not applicable

‎03-06-2023 07:13 AM

Hi @Fabio Cresta ,

You can activate the Limit Concurrent Sessions plugin (com.glide.limit.concurrent.sessions) if you have the admin role .

A typical use case if a maximum concurrent session of 1 is set:
  1. The user accesses the initial ServiceNow instance through Chrome.
  2. After the user successfully logs in, ServiceNow creates session 1 (S1) for the user.
  3. The user decides to initiate another access to the ServiceNow instance through Firefox.
  4. After the user successfully logs in, ServiceNow creates session 2 (S2) for the user.
  5. Since the user has a maximum concurrent session limit of 1, the S1 session invalidates when S2 is created.
  6. When the user goes back through Chrome to access the S1 ServiceNow instance, the user is redirected to the login page as S1 is invalid.
Concurrent session limits work with all the ServiceNow authentication mechanisms: SAML, LDAP, and local database authentication. It also works with Multi-factor authentication and all interactive ServiceNow authentication mechanisms. The source of the session is viewable through the sys_user_session table, under the column Type. The values can be:
  • Web Browser
  • Mobile Browser
  • ServiceNow Mobile App
  • Non-interactive (SOAP, WSDL, OAuth)

Once the plugin is installed , then follow these steps:

  1. Navigate to All > User Administration > Users or User Administration > Roles.
  2. Select a user or role that you want to set a concurrent session limit, check the Limit Concurrent Sessions check box, and click Update.
    The user or role has a limit of how many concurrent sessions can be open at one time.

 

0 Helpfuls

Fabio Cresta
ServiceNow Employee
ServiceNow Employee
In response to Community Alums

‎03-21-2023 07:57 AM

Hi Sandeep.

Thanks for the answer, but, unless I did something wrong, the plugin doesn't solve my problem. In fact, if a user logins twice, the first session is deactivated and the second one remains active. My need is to avoid a further login mantaining the first one active.

Fabio

0 Helpfuls