Configure an OAuth application profile to authenticate using
certificates.
Before you begin
Create an Microsoft Azure account to configure OAuth profile.
Complete the set up steps using your Microsoft Azure Developer
account. See the Microsoft Azure product documentation for instructions
on creating and configuring custom applications.
Role required: admin and Microsoft Azure portal administrator
Procedure
-
Log in to the Microsoft Azure registration profile with your
organization credentials.
-
Register a new custom application by filling in the application name, supported
account type, and redirect URL, and then select
Register.
Note: Enter the redirect URL in the following format:
https://<instance>/oauth_redirect.do.
An overview of the application's basic information is
displayed.
-
Copy the client ID to a text file.
You will use this ID and the secret value generated in the next steps to
register the app as a third-party OAuth provider on your ServiceNow instance. You use the application ID as the
client ID when you connect the application to ServiceNow.
-
Enable the Mail.ReadWrite permission.
-
In Microsoft Azure, navigate to .
-
Select Add a permission.
-
Click the Microsoft Graph tile.
-
Select Application Permissions.
-
In the Select permissions field, enter
Mail.ReadWrite.
-
Select the Mail.ReadWrite check box.
-
Select Add permissions.
-
Select Grant admin consent for <your organization
name>.
-
Select Yes to confirm.
-
Upload the certificate
-
In Microsoft Azure, navigate to .
-
Select upload certificate.
-
Provide a description, a start date, and an expiration date and upload
the certificate.
-
Copy the client ID and directory ID to a text file.
-
Navigate to and copy the OAuth 2.0 token endpoint (v2)
to a text file.