Exclude Users with Specific Roles and Web Service accounts from MFA (Multi factor Authentication)

Ujjwal019
Tera Guru

‎01-14-2025 08:25 AM

I have enforced role-based MFA for admin/itil users but I want to exclude Web Service accounts that have admin/itil roles. Can someone assist me with this requirement. 

 

Thanks

Ujjwal Sharma

 

0 Helpfuls
  • 538 Views
3 REPLIES 3

SaaniyaC
ServiceNow Employee
ServiceNow Employee

‎01-14-2025 08:44 AM

There is a field 'Enable Multifactor Authentication' present on the 'sys_user' table. Mark the field as 'False' for your web service account and test.

0 Helpfuls

Ujjwal019
Tera Guru
In response to SaaniyaC

‎01-14-2025 09:36 AM

@SaaniyaC , Thanks

Is there a better approach? Cause there are currently 80+ web service accounts and more web service accounts may be added in the future, we have to disable mfa each time. The way we have Role Based Criteria to include role based MFA. Can we configure role-based MFA to exclude specific roles as well? Or any other way ?

 

0 Helpfuls

SaaniyaC
ServiceNow Employee
ServiceNow Employee

‎01-14-2025 10:54 AM

@Ujjwal019 you can create a custom role for your web accounts that could inherit/mirror the priviledges of the itil and admin roles. Like this, your web accounts will remain out of scope for the MFA validation as according to me there is no other OOB option available to exclude these accounts

0 Helpfuls