The ServiceNow connector lets you create, synchronize, and manage ServiceNow users, groups, roles, locations, companies, user roles, and group membership within EmpowerID. This topic demonstrates how to configure and use the connector.
To connect EmpowerID to ServiceNow, you need a ServiceNow account. You also need the following from ServiceNow to create your Account Store.
*Your ServiceNow instance is part of the URL that you use to log in. It is the bold portion of this example URL: https:// dev12345.service-now.com/navpage.do These values authenticate EmpowerID to ServiceNow. You can also configure a Provisioning policy that allows you to automatically provision ServiceNow accounts for certain users. For more information, see Creating a Provisioning Policy for ServiceNow Accounts. |
When you connect EmpowerID to ServiceNow and configure your ServiceNow Account Store, the first time you run inventory, EmpowerID discovers all of the users, groups, memberships, roles, locations, companies, and user accounts in ServiceNow and creates them in the EmpowerID data warehouse. Subsequent inventory runs update any changes occurring since the LastTimeStamp value tracked by the ServiceNow connector. For more information about how the values map between ServiceNow and EmpowerID, expand the section below.
The ServiceNow Connector lets you manage ServiceNow Users, Groups, Roles, Locations, Companies, User Roles, and Group Membership within EmpowerID. Supported FeaturesWith the EmpowerID ServiceNow Connector, you can manage all of the following functions in ServiceNow. Account Management
Group Management
Locations and Companies
Roles
AuthenticationThe ServiceNow connector uses basic authentication, which takes a username and password. Be sure to use an administrator account for authentication. Account AttributesEmpowerID inventories Users in ServiceNow as Accounts in EmpowerID. Here is the attribute mapping of ServiceNow User attributes to EmpowerID Account attributes.
Group AttributesEmpowerID inventories Groups in ServiceNow as Groups in EmpowerID. Here is the attribute mapping of ServiceNow Group attributes to EmpowerID Group attributes.
Role AttributesEmpowerID inventories Roles in ServiceNow as ExternalOrgRoles in EmpowerID. Here is the attribute mapping of ServiceNow Role attributes to EmpowerID ExternalOrgRoles attributes.
Location/Company AttributesEmpowerID inventories Locations in ServiceNow, along with Companies located in those locations, as ExternalOrgZones in EmpowerID. Here is the attribute mapping of ServiceNow Location attributes to EmpowerID ExternalOrgZones attributes.
Group MembershipWith the ServiceNow connector, you can have EmpowerID inventory Group memberships from the GroupAccount table. You can also add members to groups and remove members from groups in either EmpowerID or ServiceNow, and the changes will propagate to the other system on the next inventory. User Role and Location MappingEmpowerID stores User Roles along with their corresponding Locations and Companies in the EmpowerID AccountExternalOrgRoleOrgZone table. TasksThe ServiceNow connector provides the functionality to create, update, and close ServiceNow Tasks. ServiceNow tasks can be of any type including ticket, incident, change request, and problem. InventoryThe ServiceNow connector supports two types of inventory functionality.
|
On the ServiceNow Settings page that appears, enter settings to connect to your ServiceNow instance to allow EmpowerID to discover and connect to it.
Click Submit.
To turn on inventory on the webIn the Management Console, you configured the settings in the Account Store Details, but on the web, these settings are found on the associated Resource System.
|
Click Save. EmpowerID creates the ServiceNow account store and adds a record for it in the Account Stores and Resource Systems grids.
EmpowerID uses these credentials to connect to your ServiceNow account. If they are incorrect, the connection fails and the account store is not created. |
The Details screen has three panes—a General pane, an Inventory pane, and a Group Membership Reconciliation pane—each with settings for configuring a different aspect of the ServiceNow account store you just created. For more information, expand each drop-down below.
Use this pane to configure the Account Store.
|
Use this pane to enable or disable inventory of the Account Store and to set the run schedule for the EmpowerID Inventory Job.
|
Use this pane to enable and set the schedule for how often to reconcile group membership for the Account Store.
|
Before configuring EmpowerID to manage the account store, you should determine whether you want EmpowerID to provision Person objects from the user records it discovers in the account store. If so, answer the following questions before turning on inventory.
For a greater discussion of these points within the context of connecting EmpowerID to an account store, see Active Directory. |
If you allowed provisioning, you can check for new Person objects in the Web UI. To do so, expand System Logs, select Audit Log, and navigate to the Recently Created Objects tab.
If your Person objects are not provisioned, ensure that you have enabled the Account Inbox permanent workflow. |
|
|