Introduction to credentials, connections, and aliases

All application integrations in ServiceNow require connection information, credentials, and connection and credential aliases to their respective applications to access resources.

Before you can execute an application integration in ServiceNow, you must create and configure the corresponding connection information and credentials.
A connection is an integration with a system, such as an IP address or endpoint with protocols. It contains specific details, such as database particulars, when integrating with a database.
The credential is the authentication data required to make the connection.
Connection information and credentials can vary between QA/Development/Production environments for the same integration. The tight coupling between this data and application metadata, such as workflow or job scheduling, make application metadata obsolete when you change environments. An alias alleviates this problem, for connections and credentials, since it decouples this data from application metadata.
Connection and Credential Alias
This alias allow customers to design their application metadata to couple to an alias, which during runtime resolves to connection and credential data.
Credential Alias
This alias resolves only credential data.
In addition to the alias data model, you can use a scriptable API which can get connection and credential data during runtime. There are also business rules that enforce certain constraints on these aliases. Names should contain alphabets, numbers, and underscores but cannot have special characters. The alias must be unique in a scope. If you have multiple active connections, you can have more than one active connection in the same domain. If you do not choose this option, you can have only one active connection in per domain.
Note: If you enable multiple active connections, when the connection records resolve, your application picks one connection based on an established order. The order of the connections depends on the API you use to retrieve connection data.
You can add additional connection attributes to an alias, which are available in connection data during run time. Variables overridden by connection administration during run time should not affect the alias.

Benefits to using Connections, Credentials, and Aliases

  • Central location to store and manage credentials to an external service
  • Define once and reuse for multiple platform features
  • Minimize configuration of other platform features
  • Allow non-administrators to use predefined connections and credentials
  • Increased security

Features using Connections, Credentials, and Aliases

  • Cloud Management
  • Discovery
  • Flow Designer
  • IntegrationHub
  • Orchestration
  • Service Mapping

Upgrading credential tags

In the Kingston release, the upgrade process migrates credential tags to credential aliases. All credential tags in the Credentials table have a corresponding credential alias, made of:
  • Name: alias name
  • Scope: global
  • ID: alias name
The credential tag field type changes from string to GlideList in the Credential table and the credential alias field refers to the created alias records.