How do I disable login.do?

timb3
Kilo Explorer

‎06-13-2018 09:21 AM

We are using single sign-on, and would like to restrict access to local logins.  The glide.authentication.external.disable_local_login system property is set to true, and glide.authenticate.failed_requirement_redirect is set as well, but I can still get in via login.do.  Is there another property that needs to be set to prevent this?

I've renamed the side_door.do, and this will be our way to log in if there is a SSO issue, we just want to prevent someone from trying login.do.

0 Helpfuls
  • 6,059 Views
9 REPLIES 9

Jaspal Singh
Mega Patron
Mega Patron

‎06-13-2018 10:23 AM

Hi,

 

Link should help.

 

Thanks,

Jaspal Singh

 

Hit Helpful or Correct on the impact of response.

0 Helpfuls

timb3
Kilo Explorer

‎06-13-2018 10:35 AM

Both of those articles discuss the settings we already have set, and they aren't acting the way that I'd expect (the login.do page is still usable).  Configuring the CMS plugin seems like an overly complex solution.

 

0 Helpfuls

Rohit Kaintura
Mega Guru
In response to timb3

‎06-13-2018 11:12 AM

This property glide.authentication.external.disable_local_login require SSO credentials even for the main ServiceNow login page. So, you can use this. Its safe.

Also, you can customize the login page by going to content management > pages > clean login.

That might help you.

Also, their is a language macro by which you can change the behaviour of login page but these things are not come under best practices.

 

Please mark my answer correct and helpful if my answer helped u. Thank you.

0 Helpfuls