The following table details the required and optional attributes to be configured in the assertion attribute contract.

Attribute Name Description Required / Optional

NameID

NameID and format is configurable in ServiceNow. This guide uses email.

Required

The following table details the references that are used within this guide that are environment specific. Replace these with the suitable value for your environment.

Reference Description

<tenant>

The instance name for your ServiceNow tenant you want to integrate with PingOne.
  1. Create a PingOne application for ServiceNow:
    1. Sign on to PingOne for Enterprise and go to Applications > Application Catalog.
    2. Search for ServiceNow and then click the ServiceNow row.

      A screen capture of the PingOne Application Catalog tab. There is a search bar and button to browse applications that you want to add. The search entry contains servicenow. There is a list of the matching search results for ServiceNow, listed by an image of the application icon, Application Name, Type, and setup button, which looks like a black triangle pointing to the right, displayed in rows.
    3. Click Setup.
    4. Review the steps and make a note of the PingOne SaaS ID, IdP ID, Single Sign-on URL, and Issuer values.

      A screen capture of the 1. SSO Instructions section. There are fields for Signing Certificate and the Download option, Saas ID, IdP ID, Initiate Single Sign-On (SSO) URL, and Issuer.
    5. Click Continue to Next Step.
    6. Make sure that ACS URL is set to https://<tenant>.service-now.com/navpage.do.
    7. Make sure that Entity ID is set to https://<tenant>.service-now.com.

      A screen capture of the 2. Connection Configuration section. The sentence introduction is Assign the attribute values for single sign-on (SSO) to the application. There are fields for Upload Metadata, ACS URL, Entity ID, Target Resource, Single Logout Endpoint, Single Logout Response Endpoint, Primary Verification Certificate with the Choose File button, Secondary Verification Certificate with the Choose File button, and a Force Re-authentication check box, which is cleared.
    8. Click Continue to Next Step.
    9. In the Attribute Mapping section, in the Identity Bridge Attribute or Literal Value column of the SAML_Subject row, select a suitable attribute, such as SAML_SUBJECT.

      A screen capture of the 3. Attribute Mapping section. The sentence introduction is Map your identity bridge to the attributes required by the application. The mapping attribute fields are Application Attribute, Description, and Identity Bridge Attribute or Literal Value. The fields have default entries for Application Attribute and Description. The Identity Bridge Attribute or Literal Value field requires an entry from the user and has a As Literal check box, which is cleared. There are Add new attribute, Cancel, Back, and Continue to Next Step buttons.
      NameID is configurable in ServiceNow.
      Note:

      This guide assumes email is used and that SAML_SUBJECT contains the email address for the user in PingOne.

    10. Click Continue to Next Step.
    11. Update the Name, Description, and Category fields as required.

      A screen capture of the 4. PingOne App Customization – ServiceNow section. There are fields for Icon with a Select Image button, Name, Description, and Category. At the bottom of the section, on the left side is the text, NEXT: Group Access and on the right side is the Cancel, Back and Continue to Next Step buttons.
    12. Click Continue to Next Step.
    13. Add suitable user groups for the application.

      A screen capture of the 5. Group Access section. The sentence introduction is Select all user groups that should have access to this application. Users that are members of the added groups will be able to SSO to this application and will see this application on their personal dock. There is a search bar and a Search button. There is a list showing results for Groups listed by Group Name. Each entry has the Group Name and a Remove button. At the bottom of the section, on the left is NEXT: Review Setup, and on the right is the Continue to Next Step button.
    14. Click Continue to Next Step.
    15. Review the settings.