Exclude Users with Specific Roles and Web Service accounts from MFA (Multi factor Authentication)

Ujjwal019
Tera Guru

I have enforced role-based MFA for admin/itil users but I want to exclude Web Service accounts that have admin/itil roles. Can someone assist me with this requirement. 

 

Thanks

Ujjwal Sharma

 

3 REPLIES 3

SaaniyaC
ServiceNow Employee
ServiceNow Employee

There is a field 'Enable Multifactor Authentication' present on the 'sys_user' table. Mark the field as 'False' for your web service account and test.

@SaaniyaC , Thanks

Is there a better approach? Cause there are currently 80+ web service accounts and more web service accounts may be added in the future, we have to disable mfa each time. The way we have Role Based Criteria to include role based MFA. Can we configure role-based MFA to exclude specific roles as well? Or any other way ?

 

SaaniyaC
ServiceNow Employee
ServiceNow Employee

@Ujjwal019 you can create a custom role for your web accounts that could inherit/mirror the priviledges of the itil and admin roles. Like this, your web accounts will remain out of scope for the MFA validation as according to me there is no other OOB option available to exclude these accounts