ServiceNow SSO Integration | SSO Implementation in ServiceNow with ease | Servicenow single sign-on

Hi Folks,
In this tutorial, we will be looking at ServiceNow SSO Integration. SSO Implementation in ServiceNow with ease is the main focus for this tutorial or you may call it as Servicenow single sign-on.
Let's understand first what is SSO
External SSO allows organizations to use several SSO identity provider IdPs to manage authentication as well as retain local database basic authentication.

The integration supports any combination of local and external authentication methods on a single instance:
LDAP
SAML 2.0
Digest Authentication
OpenID Connect
Local database authentication
For example, a globally dispersed corporation might require one SSO provider for their employees, a different one for their vendors, and local database authentication for their administrators. Alternatively, a company might implement SAML 2.0 and digest token authentication solutions on the same instance.

You can have a multi-provider for a single instance

Activate the plugin “Integration Multiple Provider Single SignOn Enhanced UI ID=com.snc.integration.sso.multi.ui when you activate this plugin it will also activate the basic plugin Integration Multiple Provider Single Sign On Installer ID com.snc.integration.sso.multi.installer
After the plugin has been activated there will be a module called “Multi-Provider SSO”.
Then go SSOCircle and create a new account as we will be using SSOCircle for our SSO scenario.
Then login into SSOCircle with your newly created account
Then click on Manage Metadata link on the far left-hand side
Select SSOCircle Public IDP Metadata and then copy the URL of this page OR all of the XML content in the ds: X509Certificate tag
Now go back to SNOW and select Multi-Provider SSO Identity Providers and create a new SAML SSO Identity Provider. You can provide the URL or paste the XML content. Then save the new identity provider. Note several of the fields will be automatically filled out from the provided URL or XML content.
Click on the button labeled “Generate Metadata” and open in a new tab and copy the SAML Metadata Information XML content ie EntityDescriptor element tag
Now go to SSOCircle and add a new service provider instance (ie your SNOW instance – dev33333.service-now.com) and paste the EntityDescriptor content from the previous step into the SAML Metadata Information text box labeled “Insert the SAML Metadata Information of your SP”.
Then click the Submit button. Now you will see that you have a new entry of Service Provider Metadata.
Now go back to SNOW and select Multi-Provider SSO -- Identity Providers and click on your new Identity Provider and click on the Test Connection button. Note that your email for your SSOCircle profile should be the same as the SNOW user account’s email address which you are logging in as or else you will get an error like “User:[email protected] not found”. You will need to login to SSOCircle and then it should say “Test connection is successful.”
Click on Activate button
Then click on Set Auto Redirect IdP
You also need to go to MultiProvider SSO -- Administration --Properties and select Enable multiple provider SSO. If you don’t then when you log out of SNOW you will be redirected to the SNOW login page instead of the SSOCircle login page.
Then click Save.
Note if you want to get the password go to the profile and choose the default view then you can get access to the password field. Also if you have SSO setup issues and need to be able to log back into the SNOW instance you can use the login.do page


Please like follow subscribe to my channel Technomonk and press the bell icon to get updates on new coming videos.

Regards,
Team Technomonk
(Amit Gujarathi)