Configure SOAP security

Watch

Save as PDF

Share this page

Feedback

API implementation and reference

HomeYokohama API ReferenceAPI implementation and referenceAPI implementationWeb servicesInbound web servicesSOAP web serviceConfigure SOAP security

Table of Contents

Configure SOAP security

Release version:
Yokohama
Xanadu
Washington DC
Vancouver
UpdatedJan 30, 2025
1 minute read

Yokohama
API implementation

Administrators can configure web service security for inbound SOAP requests made to the ServiceNow instance.

Before you begin

Role required: admin

About this task

You can also set up web service security to use different certificates for different web service clients. By enabling web service security, you can prevent man-in-the-middle attacks.

Note: After you configure a WS-security profile or a security policy, validation is performed on all incoming SOAP requests, including from the MID Server or ODBC driver. Disable validation for these types of requests by marking the service accounts as internal integration users.

Procedure

Upload a certificate to an instance.
Create a WS-security profile.
Create a security policy.
Security policies define which WS-security profiles are used to evaluate a particular web service request. If no policy is defined, all WS-security profiles are used to evaluate all requests.
Set the value of the property glide.soap.default_security_policy to the name of the new security policy.

Was this topic helpful?

Yes No

Installed with the Enhanced Web Service Provider - Common plugin

Set the SOAP default security policy

Installed with the Enhanced Web Service Provider - Common plugin

Set the SOAP default security policy

Yokohama API Reference

Filters

Versions

Products