Use basic authentication credentials for a MID Server

You can enforce basic authentication on each request.

Before you begin

Role required: admin

The MID Server is not able to communicate through a proxy server if the proxy server supports only NTLM authentication. You can use basic authentication with a proxy server or create an exception for the MID server host.

About this task

Supplying basic authentication information, regardless of whether it is required, has an added advantage. The web service invocation creates or updates data using the supplied credentials. For example, when you create an incident record, the journal fields have the user id of the basic authenticated user instead of the default Guest user. This behavior allows you to identify data added by a specific MID Server.

You set basic authentication credentials for SOAP requests. Each SOAP request contains an Authorization header as specified in the Basic Authentication protocol.

Note: The setting for enforcing strict security controls how ServiceNow uses the credentials you provide for the MID Server. When the setting is enabled, you must provide a user ID with access to the tables the MID Server is trying to access. When the setting is disabled, any valid user ID allows the MID Server to access to all tables.

Procedure

  1. Navigate to System Properties > Web Services.
  2. Select the check box for Require basic authorization for incoming SOAP requests.
  3. Click Save.
  4. To provide basic authentication credentials for a MID Server, navigate to C:\Program Files\ServiceNow\<MID Server name>\agent and edit the config.xml file, as follows:
    1. Find the element <parameter name="mid.instance.username" value=""/> and enter the instance administrator user name as the value.
      For example, you might enter <parameter name="mid.instance.username" value="admin"/>.
    2. Find the element <parameter name="mid.instance.password" value=""/> and enter the configured password for this instance as the value.
      For example, you might enter <parameter name="mid.instance.password" value="abc123"/>.