SSO with OIDC issue with claims

mathieu_brule · a month ago

Hi !

I'm actually trying to set up connecting users through an OIDC Identity provider.

Here's where I am :

- I've configured the identity provider record through a well known configuration url

- I've configured the OIDC Provider configuration like below :

When I try to connect with a test account, I fall down on the famous logout successful page.

I've debugged calls with the idp (thanks https://www.servicenow.com/community/community-resources/debugging-oidc-single-sign-on-feature-in-se...), and I see in logs my access token, and my id token.

I've decrypted the JWT through https://www.jwt.io/, and I got claims, (notably the sub claim), but no email claim.

That's why I tried to focus on sub claim, to connect my user to Snow, but it doesn't work...

Where am I wrong ?

Thanks by advance for your help !

mathieu_brule · 4 weeks ago

Ok it works now !

After verifications, my user claim was still valued on email, instead of sub.

Thanks for help !

View solution in original post

mathieu_brule · 4 weeks ago

Ok it works now !

After verifications, my user claim was still valued on email, instead of sub.

Thanks for help !

Tanushree Maiti · a month ago

Hi @mathieu_brule

Follow these articles/videos:

https://www.youtube.com/watch?v=Y8ml8R4r5nk

Create an OpenID Connect (OIDC) configuration for Single Sign-On (SSO

Also check:

Creating an OpenID Connect (OIDC) configuration for Single Sign-On (SSO)

Please mark this response as Helpful & Accept it as solution if it assisted you with your question.
Regards
Tanushree Maiti
ServiceNow Technical Architect
Linkedin: