Configuring Single Sign-on from the VMware Identity Manager Service to ServiceNow



Similar documents
Configuring Single Sign-on from the VMware Identity Manager Service to WebEx

Configuring Single Sign-on from the VMware Identity Manager Service to Dropbox

Configuring Single Sign-on from the VMware Identity Manager Service to Amazon Web Services

Configuring Single Sign-on from the VMware Identity Manager Service to AirWatch Applications

Configuring Single Sign-On from the VMware Identity Manager Service to Office 365

To set up Egnyte so employees can log in using SSO, follow the steps below to configure VMware Horizon and Egnyte to work with each other.

VMware Identity Manager Integration with Active Directory Federation Services 2.0

Integrating VMware Horizon Workspace and VMware Horizon View TECHNICAL WHITE PAPER

Egnyte Single Sign-On (SSO) Installation for OneLogin

An overview of configuring WebEx for single sign-on. To configure the WebEx application for single-sign on from the cloud service (an overview)

ThinPrint GPO Configuration for Location-Based Printing

Egnyte Single Sign-On (SSO) Installation for Okta

An overview of configuring Intacct for single sign-on. To configure the Intacct application for single-sign on (an overview)

Configuring. SuccessFactors. Chapter 67

Integration Guide. SafeNet Authentication Service. Using SAS as an Identity Provider for Salesforce

Configuring ADFS 3.0 to Communicate with WhosOnLocation SAML

Configuring SuccessFactors

For details about using automatic user provisioning with Salesforce, see Configuring user provisioning for Salesforce.

Zendesk SSO with Cloud Secure using MobileIron MDM Server and Okta

HOTPin Integration Guide: Salesforce SSO with Active Directory Federated Services

Configuring Salesforce

Connected Data. Connected Data requirements for SSO

Setting Up Resources in VMware Identity Manager

SP-initiated SSO for Smartsheet is automatically enabled when the SAML feature is activated.

SAML Authentication Quick Start Guide

INTEGRATION GUIDE. DIGIPASS Authentication for Salesforce using IDENTIKEY Federation Server

Microsoft Office 365 Using SAML Integration Guide

HP Software as a Service

Single Sign On (SSO) Implementation Manual. For Connect 5 & MyConnect Sites

DualShield SAML & SSO. Integration Guide. Copyright 2011 Deepnet Security Limited. Copyright 2011, Deepnet Security. All Rights Reserved.

Dell One Identity Cloud Access Manager How to Configure for SSO to SAP NetWeaver using SAML 2.0

An overview of configuring WebEx for single sign-on. To configure the WebEx application for single-sign on from the cloud service (an overview)

SalesForce SSO with Active Directory Federated Services (ADFS) v2.0 Authenticating Users Using SecurAccess Server by SecurEnvoy

OneLogin Integration User Guide

HP Software as a Service. Federated SSO Guide

Configuring Parature Self-Service Portal

Step-by-Step guide for SSO from MS Sharepoint 2010 to SAP EP 7.0x

Using SAML for Single Sign-On in the SOA Software Platform

Configuring. SugarCRM. Chapter 121

CA Nimsoft Service Desk

Explore the VMware Horizon 6 Toolbox Auditing and Remote Assistance Capabilities

Getting Started with Database-as-a-Service

VMware Identity Manager Administration

SAP NetWeaver AS Java

Security Assertion Markup Language (SAML) Site Manager Setup

Cloud Authentication. Getting Started Guide. Version

INTEGRATION GUIDE. DIGIPASS Authentication for VMware Horizon Workspace

SAM Context-Based Authentication Using Juniper SA Integration Guide

SAML Authentication with BlackShield Cloud

SAP NetWeaver Fiori. For more information, see "Creating and enabling a trusted provider for Centrify" on page

Configuring EPM System for SAML2-based Federation Services SSO

Single Sign On for ShareFile with NetScaler. Deployment Guide

DocuSign Single Sign On Implementation Guide Published: March 17, 2016

PingFederate. Salesforce Connector. Quick Connection Guide. Version 4.1

Adding Single Sign-On to CloudPassage Halo

How to Migrate Citrix XenApp to VMware Horizon 6 TECHNICAL WHITE PAPER

DocuSign Connect for Salesforce Guide

SAML Single-Sign-On (SSO)

Single Sign-on. Overview. Using SSO with the Cisco WebEx and Cisco WebEx Meeting. Overview, page 1

Single Sign-On Implementation Guide

This chapter describes how to use the Junos Pulse Secure Access Service in a SAML single sign-on deployment. It includes the following sections:

INTEGRATION GUIDE. DIGIPASS Authentication for Google Apps using IDENTIKEY Federation Server

Google Apps Deployment Guide

McAfee Cloud Identity Manager

INTEGRATE SALESFORCE.COM SINGLE SIGN-ON WITH THIRD-PARTY SINGLE SIGN-ON USING SENTRY A GUIDE TO SUCCESSFUL USE CASE

Dell One Identity Cloud Access Manager How to Develop OpenID Connect Apps

Copyright Pivotal Software Inc, of 10

Add Microsoft Azure as the Federated Authenticator in WSO2 Identity Server

GlobalProtect Features

Sharepoint server SSO

Configuring. Moodle. Chapter 82

PingFederate. Identity Menu Builder. User Guide. Version 1.0

VMware Horizon Mobile Secure Workplace User Installed Applications Support with Liquidware Labs HOW-TO GUIDE

VMware vcenter Configuration Manager SQL Migration Helper Tool User's Guide vcenter Configuration Manager 5.6

Single Sign-On Implementation Guide

DIGIPASS as a Service. Google Apps Integration

Flexible Identity Federation

Lenovo Partner Access - Overview

PingFederate. Windows Live Cloud Identity Connector. User Guide. Version 1.0

Integration Guide. SafeNet Authentication Service. Using SAS as an Identity Provider for Tableau Server

SAML single sign-on configuration overview

HOTPin Integration Guide: Google Apps with Active Directory Federated Services

Using the vcenter Orchestrator Plug-In for vsphere Auto Deploy 1.0

SAML 2.0 SSO Deployment with Okta

Helping Customers Move Workloads into the Cloud. A Guide for Providers of vcloud Powered Services

Configuring on-premise Sharepoint server SSO

DocuSign Information Guide. Single Sign On Functionality. Overview. Table of Contents

vcloud Automation Center Self-Service Portal Guide

How to create a SP and a IDP which are visible across tenant space via Config files in IS

Active Directory Solution 1.0 Guide

CONFIGURATION GUIDE WITH MICROSOFT ACTIVE DIRECTORY FEDERATION SERVER

An Overview of Samsung KNOX Active Directory-based Single Sign-On

Tenrox. Single Sign-On (SSO) Setup Guide. January, Tenrox. All rights reserved.

Configuring SAML2 for Single Sign On to Smartsheet (Enterprise Only)

Offline Data Transfer to VMWare vcloud Hybrid Service

Quick Start - Virtual Private Cloud in Germany and Australia

Director and Certificate Authority Issuance

TIB 2.0 Administration Functions Overview

VMware Identity Manager Administration

SAML application scripting guide

Transcription:

Configuring Single Sign-on from the VMware Identity Manager Service to ServiceNow VMware Identity Manager AUGUST 2015 V1

Configuring Single Sign-On from VMware Identity Manager to ServiceNow Table of Contents Overview... 2 Adding ServiceNow to the VMware Identity Manager Catalog... 2 Add ServiceNow to the Catalog... 2 Locate Identity Provider SAML Metadata... 2 Download the Identity Provider Signing Certificate... 3 Setting up ServiceNow... 3 Configure ServiceNow... 3 Complete the Setup in the Service... 4 Testing Single Sign-on Configuration... 5 Set up User in VMware Identity Manager for Testing... 5 Set up ServiceNow for Testing... 5 Verify Test-User can Sign in to My Apps Portal... 6 Entitle Users to ServiceNow... 6 /1

Overview This document provides information about configuring SAML-based single sign-on from the VMware Identity Manager service to ServiceNow. ServiceNow automates and manages global enterprise service relationships. As the enterprise cloud company, ServiceNow provides a service model that defines, structures, and automates the flow of work, removing email and spreadsheets from the process to streamline the delivery of services. Before you grant ServiceNow entitlements to your organization's users and groups, work with your ServiceNow account administrator to configure your account to use SAML-based federated authentication with the VMware Identity Manager service. Adding ServiceNow to the VMware Identity Manager Catalog To enable single sign-on to ServiceNow on the service, you must configure the app in the catalog and copy the SAML signing certificate of the service to the ServiceNow application. Add ServiceNow to the Catalog 1. Log in to the VMware Identity Manager administration console. 2. In the Catalog page, click Add Application >...from the cloud application catalog. 3. Click the ServiceNow icon. The Modify application page appears. 4. Continue to the next section. The ServiceNow application is added to the catalog but is not configured. You complete the application setup in the catalog after you configure ServiceNow. Locate Identity Provider SAML Metadata You must have the VMware Identity Provider identity provider metadata xml URL to configure Salesforce. 1. In the service s administration console Catalog tab, click Setup > SAML Metadata. 2. In the SAML Metadata section, click Identity Provider (IdP) metadata to display the metadata content. Save the URL. The URL is similar to this example. https://myco.vmwareidentity.com/saas/api/1.0/get/metadata/idp.xml. /2

Download the Identity Provider Signing Certificate You must have the signing certificate from the VMware Identity Manager service for the ServiceNow setup. 1. In the service s administration console Catalog tab, click Setup > SAML Metadata. 2. Copy and save the Signing Certificate text to a.cert or.txt file on your computer. Make sure that you include text from -----BEGIN CERTIFICATE---- through ---------END CERTIFICATE-----. 3. In the SAML Metadata section, click Identity Provider (IdP) metadata to display the metadata content. Save the file as a.cer or.txt file to your computer and note the URL. Setting up ServiceNow To set up ServiceNow for single sign-on from the service, you add the VMware Identity Manager certificate to the ServiceNow certificate page and configure ServiceNow. Configure ServiceNow 1. Log in to ServiceNow as the administrator. 2. Navigate to SAML2 Single Sign-on > Certificate. 3. Click New. 4. In the Name field, enter SAML 2.0. Note: If the name is not SAML 2.0, the certificate is not recognized by ServiceNow. 5. In the Format field, enter PEM. 6. In the PEM Certificate field, paste the text from the VMware Identity Manager certificate.txt file that you saved previously. Make sure that you include text from -----BEGIN CERTIFICATE---- through --------- END CERTIFICATE-----. 7. Click Submit. 8. Navigate to SAML2 Single Sign-on > Properties. /3

9. In the SAML 2.0 Single Sign-on page, modify the following fields. FIELD DESCRIPTION Note: In the directions that follow Replace myco with your company s VMware Identity Manager service domain name. Replace company with your company s Service-Now domain name. Enable External Authentication The Identity Provider URL which will issue the SAML2 security token with user info The base URL to the Identity Provider s AuthnRequest service. Select Yes. This is the metadata.xml URL. Enter your VMware Identity Manager identity provider (IdP) metadata URL that you saved previously. Enter as https://myco.vmwareidentity.com/saas/api/1.0/get/metadata/ idp.xml. Enter your VMware Identity Manager login URL in the format: https://myco.vmwareidentity.com/saas/api/1.0/post/sso. The base URL to the Identity Provider s SingleLogoutRequest service When SAML 2.0 single sign-on fails because the session is not authenticated, or if this is the first login, redirect to this URL URL to redirect users after logout, typically back to the portal that enabled the SSO The URL to the Service-now instance homepage Enter your VMware Identity Manager logout URL in the format https://myco.vmwareidentity.com/saas/api/1.0/get/logout.. Enter your VMware Identity Manager login URL in the format https://myco.vmwareidentity.com/saas/api/1.0/post/sso. Enter your VMware Identity Manager logout URL in the format: https://myco.vmwareidentity.com/logout. Enter your ServiceNow instance URL in the format: https://company.service-now.com/navpage.do The entity identification, or the issuer The audience uri that accepts SAML2 token Enter your ServiceNow entity identification URL in the format: https://company.service-now.com.. Enter the same URL as the line above: https://company.service-now.com. 10. Click Save. Complete the Setup in the Service 1. Log in to the VMware Identity Manager administration console. 2. In the Catalog page, select the ServiceNow icon. 3. In the Modify application page, click Configuration. /4

4. In the Assertion Consumer Services text box, enter the URL as https://company.servicenow.com/navpage.do. Replace company with you company s VMware Identity Manager domain name. 5. In the Recipient Name field, enter the same URL. 6. In the Audience field, enter the service provider unique identifier as https://company.servicenow.com. Replace company with your company s Service-Now domain name. 7. Click Save. Testing Single Sign-on Configuration Test your single sign-on configuration with a small number of users before deploying the application across your organization. Set up User in VMware Identity Manager for Testing 1. Log in to the VMware Identity Manager administration console. 2. In the Users & Groups page, click Users and ensure that the user you are testing is in the list of users. 3. In the Catalog page, click on the ServiceNow application. 4. Click Entitlements. 5. Click +Add user entitlement. 6. Select the test user and change the DEPLOYMENT field value for the user to Automatic. For example: 7. Click Save, then click Done. 8. In the top-right corner of the page, click your user name and select Logout. Set up ServiceNow for Testing 1. Log in as administrator to ServiceNow. 2. Navigate to the User Administration > Users page. 3. Click New. 4. Complete the following required fields. Ensure that the information matches the test user information in the VMware Identity Manager service. Field UserID First name Last name Description User ID address from the test user. First name of the test user. Last name of the test user. /5

Email Email address of the test user. 5. Click Submit. Continue with Complete Testing in the VMware Identity Manager Verify Test-User can Sign in to My Apps Portal 1. Log in to the user portal as the test user. 2. Click the ServiceNow icon on the My Apps page. You should now have single sign-on access to ServiceNow. Entitle Users to ServiceNow You can activate single sign-on for all users. Before you do so, ensure that all the users are added to ServiceNow. 1. Log in to the VMware Identity Manager administration console. 2. In the Catalog page, click ServiceNow. 3. In the Modify application page, click Entitlements. 4. Click +Add group entitlement. 5. Select ALL USERS and change the DEPLOYMENT TYPE field value to Automatic. 6. Click Save then click Done. /6

VMware, Inc. 3401 Hillview Avenue Palo Alto CA 94304 USA Tel 877-486-9273 Fax 650-427-5001 www.vmware.com Copyright 2015 VMware, Inc. All rights reserved. This product is protected by U.S. and international copyright and intellectual property laws. VMware products are covered by one or more patents listed at http://www.vmware.com/go/patents. VMware is a registered trademark or trademark of VMware, Inc. in the United States and/or other jurisdictions. All other marks and names mentioned herein may be trademarks of their respective companies.

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information