AD integration query

John Robinson1
Tera Contributor

‎12-07-2023 07:05 AM

We have set up AD integration with our users.ou on AD to authenticate users sign on to ServiceNow.

 

We have a requirement to ONLY give access to users that are defined in the AD group called ServiceNow.

 

When we pointed our LDAP at ServiceNow Group it did not authenticate the users, we can only get authentication through  user.ou.

 

How can we achieve authenentication for just the ServiceNow group, when the user.ou contains everyones access and is used by other applications so we cant change that.

 

I appreciate that we can control access to applications trought ServiceNow but our customer is wants NO access.

0 Helpfuls
  • 317 Views
2 REPLIES 2

Luiz Lucena
Mega Sage

‎12-07-2023 09:41 AM - edited ‎12-07-2023 09:44 AM

Hi @John Robinson1 ,

 

That should be simple.
For example, you are importing that group into ServiceNow, right?
Then, you assign whatever roles they need to that group, for example, ITIL role.
Then, any group member for that group will be able to login. 

Here in the company we have hundreds of groups with ITIL role allowing them to access ServiceNow "fulfiller" view.
And only one group with admin role.

Login through SSO is through users though.

Forgot to mention, you must have at least two LDAP imports, one for users and one for groups. 
We have at least 15 different LDAP imports for different groups and accesses. 

Let me know if that helps or if you need additional information.

0 Helpfuls

Dr Atul G- LNG
Tera Patron
Tera Patron

‎12-07-2023 09:48 AM

Hi @John Robinson1 

 

This video will help you to understand

https://youtu.be/JJL6ZbSB3FQ

 

*************************************************************************************************************
If my response proves useful, please indicate its helpfulness by selecting " Accept as Solution" and " Helpful." This action benefits both the community and me.

Regards
Dr. Atul G. - Learn N Grow Together
ServiceNow Techno - Functional Trainer
LinkedIn: https://www.linkedin.com/in/dratulgrover
YouTube: https://www.youtube.com/@LearnNGrowTogetherwithAtulG
Topmate: https://topmate.io/atul_grover_lng [ Connect for 1-1 Session]

****************************************************************************************************************
Batch 11 | Day 36 | SSO - LDAP - ITOM - ITBM Overview - Class Test #Shorts #Short
Batch 11 | Day 36 | SSO - LDAP - ITOM - ITBM Overview - Class Test #Shorts #Short
youtu.be/JJL6ZbSB3FQ
csa #ServiceNow #TechnoFuncational Disclaimer: These videos are from my training batch. These videos did not promote any ServiceNow Sales pitch or marketing. These videos are only for knowledge purposes & basic on my experience & Knowledge. Redistribution or copying of functionality is not ...
0 Helpfuls