Authenticating with ServiceNow Using SSO

Starting in Application Control 2023.1, you can authenticate with ServiceNow using a third-party identity provider (SSO) to raise Policy Change Requests in ServiceNow without signing in. Application Control's ServiceNow integration does not use Security Assertion Markup Language (SAML).

Add users to ServiceNow and the identity provider before setting up SSO for this integration

To authenticate with ServiceNow through Application Control using SSO:

1. Configure settings inside ServiceNow. See Configuring ServiceNow.

2. Prepare to Authenticate with ServiceNow:

   1. Configure Identity Providers for OIDC. Both native applications and web apps work because they use the same requirements.

   2. Specify a callback, redirect, or sign-in redirect URL. This must end in a forward slash.

      Example: callback.url.com/

      Application Control and ServiceNow need certain URLs associated with a company instance of the identity provider for setup. The Application Registration page usually provides these URLs, or add /.well-known/openid-configuration to the top level instance of the identity provider.
      Example: https://[identity provider company instance]/.well-known/openid-configuration

3. Configuring Application Control for SSO Authentication with ServiceNow .

4. Sign in to ServiceNow from Application Control using SSO:

   1. Click Logon to open the identity provider's sign-in page.

   2. Enter the SSO username and password.