The third party token grant enables ServiceNow® to accept identity tokens from trusted external identity providers, such as Azure AD or Okta. Third party token grant provides secure, token-based access. This method supports secure access and single sign-on (SSO) in federated authentication scenarios.

The client application requests an ID or access token from a trusted external identity provider, such as Azure AD or Okta, and includes it in the Authorization header of API requests to ServiceNow®. ServiceNow® validates the token and, if trusted, grants access based on the asserted identity.