Granting Users access to use the Rest APIs

CCZMAX1
Mega Sage

Hi all, I trying to find out the best practice for granting users access to the ServiceNow APIs so they can GET data to use in their applications outside of ServiceNow.   This is not for integration.

 

Do I create an OAuth record in the ‘Application Registry’ and give them a Client ID and Client Secret and they generate a token?

 

Do I create a Credential record in ‘Connections & Credentials > Credentials’ and give them the API key?

 

Or do I set a password on their users account using the ‘Set Password’ UI Action on the users record and give them that password to use basic authentication?

 

And will their access be restricted based on their security group?

 

BTW, we use SSO so local passwords are not normally set.

 

Many thanks

Max

0 REPLIES 0