Is it possible to authenticate users using an external API instead of Active Directory integration?

dferreyra · 3 hours ago

Hello community,
We have a requirement where, if a user is already logged in to another application, they should not have to log in again when redirected to the ServiceNow Virtual Agent or Customer Portal. Instead, ServiceNow should recognize the session from the other application.
We have been informed that integrating with their Active Directory is not an option. Instead, they have provided us with an API used for authentication in their applications. This API offers options to log in, validate a session, and log out, all through bearer token authentication.
Is it possible to implement this type of authentication in ServiceNow, using an external API with bearer token to validate the user's session?
Has anyone done a similar integration or could provide guidance on the recommended approach?

Thank you in advance for your help!

palanikumar · an hour ago

Hi,

Bearer token is for different purpose. This cannot be used for User authentication which is via SAML based. Your other application support SSO based authentication that can be used in ServiceNow. As per my knowledge Bearer token is only for APIs. A Bearer token generated for one application should not be used for other application.

Thank you,
Palani