Pricing  Get Quote
 
 

How to synchronize Active Directory passwords with ServiceNow using ADSelfService Plus

Solution

ServiceNow provides cloud-based IT Service Management (ITSM) software that comes bundled with user self-service options to meet the various needs of enterprises.

With the help of ADSelfService Plus's Real-time Password Synchronizer, users can now log in to their ServiceNow accounts with their Active Directory passwords. This will enable users to use the same set of credentials across both the platforms, thereby eliminating the need to remember multiple passwords.

Prerequisites:

You will need a ServiceNow user account that has read and write privileges assigned to both sys_user.user_password and sys_user.locked_out. If not, those privileges can be configured manually.

Configuration Steps:

  • Login to the ADSelfService Plus web console with admin credentials.
  • Navigate to Configuration → Self-Service → Password Sync/Single Sign On → Add Application.
  • A list of applications supported by ADSelfService Plus are displayed. Click on ServiceNow. (Alternatively, you can search for ServiceNow using the search bar provided.) The configuration page of ServiceNow is displayed.

    servicenow-password-sync-configuration

  • Enter the Application Name.
  • In the Instance Name field, enter the instance URL of the ServiceNow account.
  • Select the desired policy from the Assign Policies drop-down list.
    Note: Password synchronization will only be enabled for users who are part of the selected policy.
  • Check the box next to Enable Password Sync.
  • Type the Username and Password of a ServiceNow account that has sufficient privilege to reset passwords and unlock accounts.
  • Click Add Application.

    step-by-step-guide-for-servicenow-active-directory-integration

Assigning privileges to ServiceNow account to reset password: 

  • Login to the ServiceNow web-console with admin credentials.
  • From the System Administrator drop-down menu, select Elevate Roles.

    assigning-privileges-servicenow

  • Select the security_admin checkbox and click OK.

    servicenow-security-settings-configuration

  • Now select the Access Control tab from the System Security module.

    servicenow-service-management

  • In the Search field of the Name module, type sys_user.user_password. From the list displayed, select the sys_user.user_password field with read operation.

    servicenow-access-controls

  • Click Insert a new row to add a new role. Click Update.

    role-insertion-servicenow

  • Back in the Search list, select the sys_user.user_password field with write operation. Add a new role by selecting Insert a new row and Update the changes.

Assigning privileges to ServiceNow account to unlock account:

  • In the Search field of the Name module, type sys_user.locked_out. From the list displayed, select the sys_user.locked_out field with read operation. Add a new role by selecting Insert a new row and Update the changes.
  • Back in the Search list, select the  sys_user.locked_out field with write operation. Add a new role by selecting Insert a new row and Update the changes.

    Note: If you are using ServiceNow-Kingston please add user_admin role to the user.

Like this tip? Get the most of ADSelfService Plus by checking out more tips and tricks here.

Request for Support

Need further assistance? Fill this form, and we'll contact you rightaway.

  • Name
  •  
  • Business Email *
  •  
  • Phone *
  •  
  • Problem Description *
  •  
  • Country
  •  
  • By clicking 'Submit' you agree to processing of personal data according to the Privacy Policy.
Highlights

Password self-service

Free Active Directory users from attending lengthy help desk calls by allowing them to self-service their password resets/ account unlock tasks. Hassle-free password change for Active Directory users with ADSelfService Plus ‘Change Password’ console. 

One identity with Single sign-on

Get seamless one-click access to 100+ cloud applications. With enterprise single sign-on, users can access all their cloud applications with their Active Directory credentials. Thanks to ADSelfService Plus! 

Password/Account Expiry Notification

Intimate Active Directory users of their impending password/account expiry by mailing them these password/account expiry notifications.

Password Synchronizer

Synchronize Windows Active Directory user password/account changes across multiple systems, automatically, including Office 365, G Suite, IBM iSeries and more. 

Password Policy Enforcer

Ensure strong user passwords that resist various hacking threats with ADSelfService Plus by enforcing Active Directory users to adhere to compliant passwords via displaying password complexity requirements.

Directory Self-UpdateCorporate Search

Portal that lets Active Directory users update their latest information and a quick search facility to scout for information about peers by using search keys, like contact number, of the personality being searched.

ADSelfService Plus trusted by

Embark on a journey towards identity security and Zero Trust