Introduction ServiceNow has introduced an important security enhancement to help customers strengthen their cybersecurity posture by restricting insecure Basic Authentication API access for certain users. This change mainly impacts environments where...
Hi all, Recently, ServiceNow placed a yellow banner at the top of our instances with Action Required: Review Basic Authentication Account Security. The first bullet point under Take Action is "Review the Identified Users table" (which goes to [sys_us...
Hi all, I am new to OAuth. For inbound integration, do we need to provide username and password to an external platform to retrieve access token and refresh token?I have seen videos on Youtube on OAuth tutorial in ServiceNow and it mostly shows how t...
Hi Community, What are some of the options to verify user's identity when they contact helpdesk to reset their MFA?
We have a use case were we want certain users to be only able to use MFA by an authentication App whilst allowing other users to choose Email or authentication App. I have configured MFA to allow email for users for all users except those with the sp...
Is there a way users without roles can only see the service portal? They are redirected to /sp at login.We have users going to their profile then selecting "view identity center" which lets them into the platform. I don't want to just block the ident...
I am currently working on our Australian non-prod instance. I recently installed the High Security plugin to conduct an impact analysis before deploying it to Production instance. After measuring the impact, I attempted to roll back the plugin becaus...
Who can view a module when its roles field is empty? A. Users with no attached roles on the user record B. Users with the snc_internal role C. User roles with access to the application menu
Hi Community,I recently faced an issue where I enabled MFA on my PDI, but I lost access to the passkey, and the email account is not properly configured to receive verification codes.However, I also tried disabling MFA via API, but this approach did ...
i want to create an acl that allows only people of comment_editor group to edit the comments field and it should not affect admin roles
Hello everyone,I am locked out of my Personal Developer Instance. I previously logged in using Windows Hello / FIDO2 passkey MFA. I believe the passkey was created on an old work laptop that has since been wiped, so I no longer have access to that p...
ServiceNow doesn't want people making new sys_processor items. I understand that they can be problematic, but so can the proposed replacement (scripted REST APIs, which are just an extension of processors BTW). They provide a simple and efficient way...
Hello!I have a scheduled background script that updates the incident.description HTML field.Now I've read about ServiceNow scripting governance tool and I have added the admin user and all required users the snc_required_script_writer_permission role...
Hi Community,I am locked out of my Personal Developer Instance (PDI) - dev563738.service-now.comThe login page is asking for an authenticator app code (MFA), but I no longer haveaccess to the authenticator app.I tried:- Logging in via /login.do- Remo...
Hello community,We have a use case and need to follow best practice and thought of checking with experts here about building something if it would be a reasonable approach considering the platform architecture.In our User table 'sys_user', we have In...