Third party token workflow for user accounts

  • Versão de lançamento: Australia
  • Atualizado 16 de jun. de 2026
  • 1 min. de leitura

    • This workflow can be used to integrate third-party identity providers (IdPs) with ServiceNow® for secure API access. It allows client applications to obtain tokens directly from an IdP and use them to access ServiceNow APIs.

    Antes de Iniciar

    Role required: oauth_admin, mi_admin, admin

    Por Que e Quando Desempenhar Esta Tarefa

    The third-party client application requests tokens directly from your identity provider (IdP). The authentication method between the client and the IdP is flexible and can be configured to meet your specific requirements. After successful authentication, the IdP issues an ID token or access token, and optionally a refresh token. These tokens are sent directly to the client application, which then uses them to access ServiceNow APIs.
    Nota:
    ServiceNow validates the token using the public key configured during setup and grants access to the requested APIs. Ensure that the token is in JSON Web Token (JWT) format.
    Figura 1. User Account Workflow
    User Account Workflow

    Procedimento

    1. Configure your third party client application.

      Set up your third party client application to request tokens directly from your identity provider (IdP). Select an authentication method that best fits your security and integration requirements.

    2. Create an OAuth client in ServiceNow.

      Provide the required details to enable validation of incoming tokens from your identity provider (IdP).