Enable the local login
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-01-2022 05:38 AM
We want to enable the local login in our instance so that if any user is in the login.do page he can use his local login password to log into the instance. We have enabled the Multi-provider SSO in our instance and its working fine if any user hits the instance URL. Its just that specifically in the login.do page we want to allow the local login password instead of SSO password. We have set the glide.authentication.external.disable_local_login property to false but still its taking the SSO password in the login.do page. Is there anyway we can enable the local login ? Thanks in advance.
Re-Edited: The idea is to force the users to go through the SSO Authorization page instead of the login.do (in case anyone had bookmarked it). In order to do this, we have set the local password of all the users to some random value, so that if the user tries to login using their SSO password in the login.do page they will get a login error and will be prompted to use the SSO login instead.
Why are we going for this solution ? The reason is when the users are doing the login from the login.do page using their SSO password, ServiceNow is sending the passwords in clear text as it appears from our logs. This will pose security risks hence we have decided to disable this feature.
The only problem as of now is that even when we have reset all the local passwords of the users, when they are in the login.do page the system is still considering the SSO password. Any help on how to enable the local login for the login.do page will be really helpful.
- Labels:
-
Platform and Cloud Security
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-01-2022 05:53 AM
Please check if side_door.do works for you.
Thanks,
Anil Lande
Thanks
Anil Lande
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-01-2022 06:06 AM
Hi Anil,
The issue is we want to enable the local login in the login.do page. Anyways, tried with side_door.do but no luck.
Regards,
Abhinandan
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-01-2022 06:17 AM
Hi
As per my knowledge you dont need to enable login.do forcefully. Infact to disable we set above mentioned property to true.
By anychance did you played with SSO script includes or SPEntry page?
Thank you
Prasad
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-01-2022 11:39 PM
No OOB SSO scripts or Script includes were touched. And also we are not trying to enable the login.do forcefully, we just want to enable the local passwords for the login.do page. Currently, if we remove the LDAP source from the user profile, then the local password are considered for those profiles but if we don't remove it then the SSO password is considered. We want to find a solution such that if a user is on the login.do page then only the local password needs to be considered. I have updated the query with the full use case scenario. Please check. Thank you for the help.
