ServiceNow – Automated Task Closure After AD Access Provisioning

NaveenK08632274 · 3 weeks ago

I am currently working on a use case to automate task closure in ServiceNow once access has been provisioned through Active Directory (AD).

Use Case Overview

When a request is created, a task is generated with the following user details:

Employee ID
First Name
Last Name
Location

Based on this request, multiple application-specific tasks are created, such as:

Salesforce
Jira
Oracle

Requirement

Once the task is created:

The required access is provisioned by adding the user to the appropriate AD group from the AD server.
After successful access provisioning, the respective task should be automatically closed in ServiceNow.
Parallel tasks are also created, so the solution should support handling multiple tasks simultaneously.

Challenge

The main challenge is identifying the best approach to detect when access is successfully granted in AD and then triggering the automatic task closure in ServiceNow.

If anyone has worked on a similar use case or can suggest the best approach, please share your guidance.

Thanks in advance for your support.

Swapna Abburi · 3 weeks ago

Hi @NaveenK08632274

I followed below approach for task based automation and its working fine for us.

Firstly, we set the task assignment group to a dedicated group created for automations.
Based on the trigger condition, a flow to trigger automation flow actions, in your case, adding users to AD group.
After successful response from AD flow action, a validation step for verification for example: is user exists in AD group
Post validation, the task is set to closed complete within the automation queue. If any failures, the flow reassign the task to manual fulfillment queue.
A dashboard for regular monitoring of failure cases.

Hope above approach helps for your use case and environment.

View solution in original post

Tanushree Maiti · 3 weeks ago

Hi @NaveenK08632274

To create, delete, and manage objects in Microsoft Active Directory, such as users, groups, and computers -

1) Use Microsoft Active Directory v2 Spoke

https://www.youtube.com/watch?v=FJFN80duTc0

2) Also it can be done by enabling Azure AD activity pack by which an administrator to automate employee onboarding and offboarding functions on Azure AD and manage Office 365 licensing.

Custom Action details: Add User to Group AD activity

Please Accept the solution if it assisted you with your question & Mark this response as Helpful.
Regards
Tanushree Maiti
ServiceNow Technical Architect
LinkedIn: https://www.linkedin.com/in/tanushreemaiti

View solution in original post

Swapna Abburi · 3 weeks ago

Hi @NaveenK08632274

I followed below approach for task based automation and its working fine for us.

Firstly, we set the task assignment group to a dedicated group created for automations.
Based on the trigger condition, a flow to trigger automation flow actions, in your case, adding users to AD group.
After successful response from AD flow action, a validation step for verification for example: is user exists in AD group
Post validation, the task is set to closed complete within the automation queue. If any failures, the flow reassign the task to manual fulfillment queue.
A dashboard for regular monitoring of failure cases.

Hope above approach helps for your use case and environment.

Tanushree Maiti · 3 weeks ago

Hi @NaveenK08632274

To create, delete, and manage objects in Microsoft Active Directory, such as users, groups, and computers -

1) Use Microsoft Active Directory v2 Spoke

https://www.youtube.com/watch?v=FJFN80duTc0

2) Also it can be done by enabling Azure AD activity pack by which an administrator to automate employee onboarding and offboarding functions on Azure AD and manage Office 365 licensing.

Custom Action details: Add User to Group AD activity

Please Accept the solution if it assisted you with your question & Mark this response as Helpful.
Regards
Tanushree Maiti
ServiceNow Technical Architect
LinkedIn: https://www.linkedin.com/in/tanushreemaiti