ServiceNow – UPSSO SAML INTEGRATION GUIDE

This document provides the instructions for setting up UPSSO as a Third Party IDP to ServiceNow application using SAML protocol.

PREREQUISITES

  1. Administrator access to the UPSSO portal.
  2. Administrator access to the ServiceNow application.

CONFIGURING ServiceNow in UPSSO

  1. Login into UPSSO portal as an administrator
  2. Click on the “Application Management” from the left side navigation menu.
  3. Click on the “Add Application” button as highlighted below,

4. Click on the “ServiceNow” icon,

5. Enter the ServiceNow instance ID. For Example: If your ServiceNow URL is https://dev19250.service-now.com then enter dev19250

6. Click on the “SAVE” button.

DOWNLOADING UPSSO (IDP) METADATA XML

  1. Login into UPSSO portal as an administrator
  2. Click on “IDP Resources” from the left side navigation menu
  3. Click on the “DOWNLOAD IDP METADATA XML” button.

4. The metadata XML will open in a new tab.

5. Right-click on the XML and select the “Save as…” option.

6. Save the XML file in your desired location.

CONFIGURING UPSSO IN ServiceNow

  1. Login into ServiceNow application as administrator
  2. Search and click on “Plugins” from the left side navigation menu.
  3. Search for “Single Sign-On” as shown below

4. Install and activate the plugin “Integration - Multiple Provider Single Sign-On Enhanced UI”

5. Install and activate the plugin “Integration - Multiple Provider Single Sign-On Installer”

6. Search for “Multi-Provider SSO” in the left side navigation menu.

7. Click on “Properties” as shown below. Select “Yes” for “Enable multiple provider SSO” option

8. Enter “email” in the text box as shown below. Click on the “Save” button.

9. Search for “Identity Providers” in the left side navigation menu and click on “Identity Providers”.

10. Click on the “New” button.

11. Click on the “SAML” link.

12. “Import Identity Provider Metadata” popup box will be opening. Select “XML” option.

13. Copy the contents of the Metadata XML file downloaded in the above section “DOWNLOADING UPSSO (IDP) METADATA XML”

14. Click on the “Import” button.

15. Identify Provider form will be populated with SAML configurations.

16. Select the “Default” checkbox.

17. Under “User Provisioning” tab uncheck both the checkboxes,

18. Under the “Advanced” tab enter User Field as “email”.

19. Click on the “Test Connection” button.

20. UPSSO login screen will be displayed. Enter username/password that has the corresponding user in ServiceNow (Note: The user in UPSSO & ServiceNow should have same email id)

21. Enter the OTP,

22. If all the “SSO Login Test” are passed then the “Activate” button will appear. Click on the “Activate” button.

23. Search and click on the “Identity Providers” from the left side navigation menu

24. Right-click on the newly created UPSSO identity provider and select “Copy sys_id” (Keep the copied sys_id in a text editor)

25. Search and click on the “My Company” from the left side navigation menu

26. Click on the Company menu icon as shown below. Click on “Configure” -> “Form Design”

27. Drag “SSO Source” from the “Fields” box and drop it into the “Company” box on the right-hand side as the last attribute.

28. Click on the “Save” button.

29. Search and click on the “My Company” from the left side navigation menu

30. Enter “SSO Source” as sso:<SYS_ID_COPIED_ABOVE>. Please refer below,

31. Click on the “Update” button.

TESTING THE SAML INTEGRATION

  1. Logout of UPSSO and ServiceNow applications if already logged in.
  2. Login into UPSSO portal as a user mapped in ServiceNow (Note: The user in UPSSO & ServiceNow should have same email id)
  3. Click on the “ServiceNow” application icon.

4. Enter the OTP

5. User will be logged into the ServiceNow application.