Authenticating with OAuth2

OAuth2 is available for IdentityIQ version 8.1 and later.

  1. In IdentityIIQ, create an OAuth client. For more information, refer to OAuth 2.0 (Client Credentials) as a Token-Based Protocol for API Authentication.

  2. In Service Now:

    1. Setup OAuth. For more information, refer to ServiceNow to search their help documents.

    2. Create an endpoint for the client to access the instance. For more information, refer to ServiceNow to search their help documents.

  3. Replace SP_SPNT_SNOW_INT_ServiceNow_Task_Rule

  4. In SP_SPNT_SNOW_INT_ServiceNowCredentialConfig use the following key/values:

    Key Value

    enableOauth2

    True

    ClientId

    clientId created in step 2b.

    clientSecret

    encrypted value from step 2b

    tokenURL

    https://<your instance name> /oauth_token.do

    password

    Same value as for Basic Authentication

    url

    Same value as for Basic Authentication

    username

    Same value as for Basic Authentication

After you’ve successfully integrated the ServiceNow Service Portal with IdentityIQ, you can access it from the Service Portal link (e.g., https://<instance>.service-now.com/sp).

You can now perform the following from within ServiceNow:

  • View and manage the roles and entitlements associated with each user.

  • View and make access requests and add comments to help approvers decide how to handle each request.

  • Set sunrise and sunset dates for the access that’s been granted.

  • Resolve any SoD errors that arise from the request.

Important
As an Administrator, you’ll need to add a Manage Access link to the Service Portal menu that users will click to request access, as this is not done automatically via the app installation. For more information, refer to Adding a Manage Access Link for Users to Request Access.