We have our SN instance setup with SSO using ADFS to authenticate with our active directory.

Users can click a special hyperlink ( ourcompany.service-now.com/login_with_sso.do?glide_sso_id=12355   ) and are logged in successfully.

However, when our SN instance emails a user a link to a specific record, the user clicks the link and is sent to the login page.

Since our users do not have local accounts and local passwords, they cannot sign into this page, but will inevitably try using their AD credentials and fail.

Is there a way to configure SN such that when they click hyperlinks via email, they are automatically signed in via SSO and then directed to the record they were trying to access?

After reading the following wiki article (http://wiki.servicenow.com/?title=External_Authentication_(Single_Sign-On_-_SSO)#gsc.tab=0 ) it seems like we can direct unauthenticated requests to the SSO process rather than the default login by configuring two system properties:

1. glide.authentication.external.disable_local_login   (which was already set to true)
2. glide.authenticate.failed_requirement_redirect (which was already set to https://idp.ssocircle.com:443/sso/SSORedirect/metaAlias/ssocircle )

I tried changing glide.authenticate.failed_requirement_redirect to our SSO URL but this had no effect.........