LOUISVILLE, KENTUCKY
ATLANTA, GEORGIA
CHICAGO, ILLINOIS
CINCINNATI, OHIO
DENVER, COLORADO
MADISON, WISCONSIN
RARITAN, NEW JERSEY
TORONTO, ONTARIO
NOIDA, INDIA
HYDERABAD, INDIA

V-Soft's Corporate Headquarters

101 Bullitt Lane, Suite #205
Louisville, KY 40222

502.425.8425
TOLL FREE: 844.425.8425
FAX: 502.412.5869

Denver, Colorado

6400 South Fiddlers Green Circle Suite #1150
Greenwood Village, CO 80111

TOLL FREE: 844.425.8425

Chicago, Illinois

208 N. Green Street, #302, Chicago, IL 60607

TOLL FREE: 844.425.8425

Madison, Wisconsin

2810 Crossroads Drive, Ste. 4000
Madison, WI 53718

TOLL FREE: 844.425.8425

Atlanta, Georgia

1255 Peachtree Parkway Suite #4201
Cumming, GA 30041

TOLL FREE: 844.425.8425

Cincinnati, Ohio

Spectrum Office Tower 11260
Chester Road Suite 350
Cincinnati, OH 45246

Phone: 513.771.0050

Raritan, New Jersey

216 Route 206 Suite 22 Hillsborough Raritan, NJ 08844

Phone: 513.771.0050

Toronto, Canada

1 St. Clair Ave W Suite #902, Toronto, Ontario, M4V 1K6

Phone: 416.663.0900

Hyderabad, India

Incor 9, 3rd Floor, Kavuri Hills
Madhapur, Hyderabad – 500033 India

PHONE: 040-48482789

Noida, India

H-110 - Sector 63 ,
NOIDA , Gautham Budh Nagar ,
UP – 201301

Understanding Multi-factor Authentication In ServiceNow Madrid Release

Authentication_2100x1196_291kb

In ServiceNow's London release, there was not much scope for securing instances, which in turn may have led to lost data. To avoid this, the ServiceNow Madrid release comes with multi-factor authentication. Here we discuss how ServiceNow multi-factor authentication system works and ensure secured access to instances.

ServiceNow Multi-Factor Authentication

The two-factor or multifactor authentication in Madrid version release overcomes the data loss issue by adopting double verification features by a Google authentication mechanism through a mobile app.

The ServiceNow multifactor authentication gives users ability to authenticate ServiceNow instances with two-step verification. Here, the user experiences a two-step verification while logging in into instance. This provides strong security to the instance.  The two steps authentication includes:

  • The first level of authentication provides basic database authentication with username & password.
  • The second level of authentication requires the user to enter a token/passcode in addition to the password.

Note: This type of authentication in an instance is only supported through Google Authentication.

For a specific task, sharing credentials with teammates may be required. If we forget to reset our credentials after the task is complete, previously your instance would be vulnerable to others who might manipulate the instance or data. But, through Multi-factor authentication by ServiceNow Madrid, access to the instances is double checked with a google verification code every time one tries to login.

Authentication methods that are supported in Instance are:

  • Local Database Authentication (i.e., ServiceNow database).
  • SSO login with LDAP integration.

Authentication methods that are not supported in Instance are:

  • SSO SAML
  • SSO Digest

In Madrid, “Integration-Multifactor Authentication” is activated by default. In previous versions, users had to activate this plugin. Without activating the plugin, you will not be able to enable/disable multi-factor authentication in your instance.

Roles: Required roles admin

By configuring this authenticating step, one can protect instance more securely. Below are the steps to setup Multi-Factor Authentication in ServiceNow Instance.

Process to Enable ServiceNow Multi-Factor Authentication in your Instance

1. Go to “Multi-Factor Authentication” module in instance, then click on Properties and select the check box to “Enable Multi-Factor authentication” and save. See below screen for reference.                                                                Enable Multi-Factor authentication in ServiceNow Madrid

2. Then go to user profile, click on Multi-factor authentication link. The instance will show the QR code. This QR code is useful for getting the information related to the pass code for your instance.                     Multi-factor authentication link ServiceNow ITSM Madrid Instance Dashboard

3. Before scanning the QR code shown in the instance, download the “Google Authenticator App” from the play store in your mobile device. By default the pass code changes every 10 seconds, where the user is prompted to enter the passcode. Users can reset the passcode generation time period as per their requirement.

Mobile app pictured below.                                                                      Google Authenticator Mobile App for ServiceNow Madrid

4. Scan the QR code shown in instance to get the instance details in the mobile app and click Add Account. Enter the pass code of your instance shown in mobile and click “Pair Device”.

After pairing the instance allows users to access the instance in the mobile app and use the 6-digit pass code while logging on to your instance every time.

Pairing the ServiceNow Madrid instance using QR Code

5. Multi-factor Authentication is successfully configured in your instance. Now your instance can perform two-factor authentication while logging into your instance.                                     QR Code for Multi-Step Authentication ServiceNow Madrid

6. Next time when the user tries to log in, the instance will log in based on multi-factor authentication. It verifies the username, password and pass code combination.

As the authentication mechanism is very dynamic, users can enjoy an added layer of security and protect their instances. 

Check out some other interesting blogs on ServiceNow Madrid:

 

Priyanka MandapuramAbout Author

Priyanka works as ServiceNow Developer at V-Soft Consulting. She holds 3.8 years’ experience as a software developer. She is a certified ServiceNow Admin and Java OCAJP-8. She is also skilled in Java, Web Services, Angular 2, Junit, UML, JavaScript, HTML and MySQL.

 

Topics: ServiceNow, ServiceNow Madrid, Multi-Factor Authentication, ServiceNow Multifactor authentication

Get tech and IT industry Updates