SAM - Integrating with Azure AD - Xanadu

NeenaPatel
Tera Contributor

Hi Team,

 

I am trying to follow the steps in here Integrating with Azure AD.

 

As soon as I click on Get OAuth Token I get an error. See file.

 

I get the same error in Dev Instance and Pre Prod Instance.

 

Regarding the Azure AD role due to policies, I have only been given a Global Reader.

 

How can I get past this? Do I need much higher privileges then Global Reader in Azure AD? - See screenshot

 

Thanks

Neena

1 ACCEPTED SOLUTION

dreinhardt
Tera Sage

Hi @NeenaPatel,

 

In such cases, we always proceed as follows:

  • Authorization as specified by ServiceNow for initial setup
  • Evaluate the necessary permissions for the use case
  • Reduce permissions and test repeatedly

Best, Dennis

Should my response prove helpful, please consider marking it as the Accepted Solution/Helpful to assist closing this thread.

View solution in original post

3 REPLIES 3

dreinhardt
Tera Sage

Hi @NeenaPatel,

to setup the integration you should follow the „Minimum permission“ table at the beginning of the integration documentation page. As soon the integration is established, you can start testing to reduce the permissions.

 

https://www.servicenow.com/docs/bundle/yokohama-it-asset-management/page/product/software-asset-mana...

 

 

 

Best, Dennis

Should my response prove helpful, please consider marking it as the Accepted Solution/Helpful to assist closing this thread.

Hi @dreinhardt 

 

Thanks for coming back. So for me to complete the integration I need Application Developer Role in Azure AD?

 

I thought Global Reader would work based on the permission table:

 

  • Connect applications
  • Update connected applications
  • Global reader/Reports reader/ Security/Administrator/Security operator/Security reader
  • Application developer

 

Thanks

Neena

 

dreinhardt
Tera Sage

Hi @NeenaPatel,

 

In such cases, we always proceed as follows:

  • Authorization as specified by ServiceNow for initial setup
  • Evaluate the necessary permissions for the use case
  • Reduce permissions and test repeatedly

Best, Dennis

Should my response prove helpful, please consider marking it as the Accepted Solution/Helpful to assist closing this thread.