Authentication

ServiceNow authentication validates the identity of a user who accesses an instance, and then authorizes the user to features that match the user's role or job function.

Available authentication methods

You can use several different methods to authenticate users. User credentials are matched to different saved credentials for each method.

Authentication methods Description
Local database The username and password in their user record in the instance database.
Multi-provider Single Sign-on (Multi-SSO) and SAML 2.0 The username and password configured in identity providers, which have a matching user account in the database.
LDAP The username and password in their LDAP account, which has a matching user account in the database.
OAuth 2.0 The username and password of OAuth identity provider, which has a matching user account in the database.
Digest Token An encrypted digest of the username and password in the user record.
Multifactor The username and password in the database and a passcode sent to the user's mobile device that has Google Authenticator installed.
Note: You can use SAML and Digest Authentication through the Multiple Provider SSO application.