Third party token grant
The third party token grant enables ServiceNow to accept identity tokens from trusted external identity providers, such as Azure AD or Okta. Third party token grant provides secure, token-based access. This method supports secure access and single sign-on (SSO) in federated authentication scenarios.
- Ideal for:
- Federated authentication scenarios where ServiceNow trusts identity tokens issued by external identity providers such as Azure AD or Okta.
- How it works:
- The client application obtains an ID token from a trusted third-party identity provider and includes it in the Authorization header when making API requests to the ServiceNow instance to validate the token and, if trusted, grants access based on the identity it asserts—enabling seamless single sign-on (SSO) and federated authentication across systems.
To know more about how to use accounts from a third-party identity provider (IdP) to access the ServiceNow API, see Third party token workflow for user accounts.