Password Synchronization with ServiceNow

 

Steps to configure ServiceNow accounts with ADSelfService Plus

 

• Log in to the ADSelfService Plus web console with admin credentials.

• Navigate to Configuration → Self-Service → Password Sync/ Single Sign On.

• In the dashboard which displays the list of applications supported by ADSelfService Plus, click ServiceNow. The configuration page of ServiceNow is displayed.

  

• From the Modules drop-down list, select Password Sync.

• In the Instance Name, enter the instance URL of the ServiceNow account.

• Enter an appropriate Display name.

• Type the User Name and Password of the ServiceNow account in the respective fields. If the user account does not have read and write privileges to either sys_user.user_password or sys_user.locked_out, they must be provided manually.

• Enter an appropriate Description.

• From the Available Policies drop-down list, select the policies for which the synchronization of passwords must occur.

• Click Save.

 

A. Privileges required to change password

 

• Login to the ServiceNow web-console with admin credentials.

• From the System Administrator drop-down box, select Elevate Roles.

  

• Select the security_admin option and click OK.

  

• Now select the Access Control tab from the System Security module.

  

• In the Search field of the Name module, type sys_user.user_password. From the list displayed, select the sys_user.user_password field with read operation.

  

• Click Insert a new row to add a new role. Click Update.

  

• Back in the Search list, select the sys_user.user_password field with write operation. Add a new role by selecting Insert a new row and Update the changes. 

 

B. Privileges required to unlock account

 

• In the Search field of the Name module, type sys_user.locked_out. From the list displayed, select the sys_user.locked_out field with read operation. Add a new role by selecting Insert a new row and Update the changes.

• Back in the Search list, select the  sys_user.locked_out field with write operation. Add a new role by selecting Insert a new row and Update the changes.

 

Users with the privileged roles can now configure password synchronization between ServiceNow and Active Directory in ADSelfService Plus.