SINGLE SIGN-ON AND AUTOMATED USER … user lifecycle management and deliver the desktop and mobile single sign-on experience that users have come to expect while protecting corporate

SINGLE SIGN-ON AND AUTOMATED USER MANAGEMENT FOR SERVICENOW®

SERVICENOW®

SOLUTION BRIEF

Automate user lifecycle management and deliver the desktop and mobile single sign-on experience that users have come to expect while protecting corporate information—all with a single password.

ServiceNow provides service management for every

department in the enterprise including IT, human

resources, facilities, field service and more. Allowing

easy, secure access for your users is critical to

a successful ServiceNow implementation. Ping

Identity® offers a certified integration for automated

user management and standards-based single

sign-on (SSO) for ServiceNow as well as many

other software as a service (SaaS) applications.

CERTIFIED INTEGRATION BUILT WITH IDENTITY STANDARDSBefore modern internet SSO and identity standards, users were often

required to have passwords for each of their SaaS applications, leading

to password resets, reuse and theft which affected security as well as

productivity. User lifecycle management was a tedious process, forcing

organizations to provide updates to the SaaS provider manually or via a text

file as employees were hired or changed roles. Today, many SaaS providers,

including ServiceNow, provide standard mechanisms for both SSO and

automated user management. The ServiceNow Connector utilizes these

mechanisms as part of our Next Gen Identity platform.

SSO Token

User Sync

SSO

HOW THE CONNECTOR WORKSThe ServiceNow Connector allows your users to authenticate

against an existing data store such as Microsoft® Active

Directory (AD) and then provides a token that is used to sign

on to ServiceNow. The token is a standard SAML assertion,

which is signed by the organization and validated by ServiceNow

instead of a password, enabling secure SSO regardless of where

users are located or what devices they’re using.

The connector also provides synchronization between your

organization’s on-premises AD or LDAP user store and ServiceNow,

ensuring that identities are created, updated and disabled in the

ServiceNow user store as they’re modified in the established

system of record. When users are added to a defined group

in AD, they are automatically provisioned into ServiceNow with

the correct role assignment and permissions so that they can

immediately sign on to ServiceNow without further intervention.

SOLUTION HIGHLIGHTS

Automated user managementAutomatically provision the fullrange of systems and applicationsfor new hires, including SaaS-basedapplications and entitlements.

Single sign-on (SSO)Provide one-click access to all ofyour applications from any browseror device.

Access controlEnable and disable end-user accessto accounts as well as their federatedaccess to SaaS applications.

Compliance and governanceCreate user access policies andprovide visibility and auditing for onpremises and SaaS applications.

Multi-factor authenticationMobile and token-based multi-factorauthentication provides another layerof security for all of your app

When a user is removed or deactivated, the ServiceNow

account is also disabled, ensuring that the user is immediately

denied access from every device. Automating this process as

part of your existing user lifecycle management not only saves

time and ensures consistency, it also provides a single source

for auditing access to all of your applications.

Ping Identity is the leader in Identity Defined Security for the borderless enterprise, allowing employees, customers and partners access to the applications they need. Protecting over one billion identities worldwide, the company ensures the right people access the right things, securely and seamlessly. More than half of the Fortune 100, including Boeing, Cisco, Disney, GE, Kraft Foods, TIAA-CREF and Walgreens, trust Ping Identity to solve modern enterprise security challenges created by their use of cloud, mobile, APIs and IoT. Visit pingidentity.com.

Copyright ©2016 Ping Identity Corporation. All rights reserved. Ping Identity, PingFederate, PingOne, PingAccess, PingID, their respective product marks, the Ping Identity trademark logo, and IDENTIFY are trademarks, or servicemarks of Ping Identity Corporation. All other product and service names mentioned are the trademarks of their respective companies.

#3090 | 10.16 | v001

Ping Identity ServiceNow

LEARN MORE ABOUT THE SERVICENOW CONNECTOR

WANT MORE INFORMATION?

For more information about this connector and other solutions, contact us at 877-898-2905 or visit pingidentity.com today

The ServiceNow Connector is available for our software solution, PingFederate®, and our pure cloud offering, PingOne®.

With full featured adapters and a lightweight Active Directory agent, organizations can be up and running with standards-based SSO and

automated user provisioning in a matter of hours instead of days or weeks. Users can be stored in any directory, including the PingOne

cloud directory. Complete support for Integrated Windows Authentication (IWA) provides seamless SSO for your Windows users, while HTML

form-based authentication can be used for other platforms and devices, including mobile phones and tablets.

Ping Identity believes secure professional and personal identities

underlie human progress in a connected world. Our identity and

access management platform gives enterprise customers and

employees one-click access to any application from any device.

Over 2,000 companies, including half of the Fortune 100, rely on

our award-winning products to make the digital world a better

experience for billions of people.

With a service-orientation toward the activities, tasks and

processes that make up day-to-day work life, ServiceNow helps

the modern enterprise operate faster and be more scalable than

ever before. ServiceNow provides service management for every

department in the enterprise including IT, human resources,

facilities, field service and more.