Configure Google reCAPTCHA for the password reset process

  • Release version: Xanadu
  • Updated August 1, 2024
  • 1 minute to read

    • To use the Google reCAPTCHA service, instances that are running on a domain other than service-now.com require an API key pair from Google.

    Before you begin

    Role required: admin

    About this task

    • The procedure described in this topic is optional for instances that are running on the service-now.com domain.
    • Because on-premises instances do not have access to the Internet, they cannot use the Google reCAPTCHA service. Do not follow the procedure described in this topic. Instead, set the password_reset.captcha.google.enabled system property to false. This setting enables the CAPTCHA service that is provided with the base system.
    • The Password Reset Windows Application uses the base-system CAPTCHA service even if the Password Reset application is configured to use Google reCAPTCHA.

    Procedure

    1. Request an API key pair (a site key and a secret) from Google at https://www.google.com/recaptcha.
    2. Set the following system properties:
      Property Value
      password_reset.captcha.google.enabled Set to true.

      Type: string

      Default: true
      google.captcha.site_key Set to the site key that Google provided.

      Type: string

      Default: A site key that Google provided to ServiceNow
      google.captcha.secret Set to the secret that Google provided.

      Type: password2

      Default: An encrypted secret that Google provided to ServiceNow

      Note:
      Select reCAPTCHA v2, I'm not a robot option. (reCAPTCHA v3 is not currently supported).
      Google Captcha