Registering PingFederate as an identity provider in ServiceNow - PingFederate

ServiceNow Provisioner
bundle
pingfederate-servicenow-connector
ft:publication_title
ServiceNow Provisioner
Product_Version_ce
category
Administrator
Audience
ContentType
English
Integration
Language
Product
Productdocumentation
ServiceNow
integrationdocx
pingfederate
ContentType_ce
Product documentation
Integration

To allow PingFederate to coordinate authentication for ServiceNow, configure the SAML 2.0 properties.

For official documentation, see External single sign-on (SSO) in the ServiceNow documentation.
  1. In your ServiceNow instance, go to SAML 2 Single Sign-on > Properties.
  2. On the SAML 2.0 Single Sign-on properties screen, select Enable external authentication.
  3. In the Identity Provider properties section, in the Identity Provider URL field, enter your PingFederate URL based on the following:

    https://pf_host:pf_port

  4. In the base URL to the Identity Provider's AuthnRequest service field, enter your PingFederate SSO endpoint based on the following:

    https://pf_host:pf_port/idp/SSO.saml2

  5. Optional: Select Sign AuthnRequest.
  6. In the base URL to the Identity Provider's SingleLogOutRequest service field, enter your PingFederate SSO endpoint based on the following:

    https://pf_host:pf_port/idp/SLO.saml2

  7. In the protocol binding for the Identity Provider's SIngleLogoutRequest service field, enter urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST.
  8. Select Sign LogoutRequest.
  9. In the Service Provider (ServiceNow) properties section, update the instance homepage, entity identification, and audience uri fields to point your ServiceNow instance.
  10. In the User table field, enter user_name.
  11. In the NameID policy field, enter urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified.
  12. Click Save.