Activate Adaptive Authentication with Trusted Mobile app by using the authentication policy and filter conditions.

Before you begin

Make sure the Adaptive Authentication (com.snc.adaptive_authentication) plugin is installed.

Role required: admin

Procedure

  1. Navigate to All > Adaptive Authentication > Authentication Policies > Properties.
  2. On the Adaptive Authentication Properties page, enable the following properties:
    • Enable the Authentication Policy (glide.authenticate.auth.policy.enabled)
    • Enable Device Trust Flow (glide.authenticate.preauth.allow.trusted.device)
    Adaptive Authentication Properties
    Note: To disable the device trust flow property, you must remove the conditions with trusted mobile filter. Otherwise, an error message is displayed to remove the conditions.
  3. Navigate to All > Adaptive Authentication > Auth Policy Contexts > Pre Authentication Context.
  4. Define the conditions in the Pre Authentication context.
    For more information, Pre authentication context.
    Note: By default, the policy condition is Deny Policy. You can change to Allow Policy. These policies are direct opposites.
    • With the Allow Policy, all users are denied access by default, and it only allows access when the allow access policy conditions are true.
    • With the Deny Policy, all users are allowed access by default, and it only denies access when the deny access policy conditions are true.

    In the Policy Input, the policy input Trusted Mobile App is a policy input for the trusted mobile app.

    Auth Policy Context
  5. In the Policy Conditions, create the condition by clicking New.
  6. On the form, fill the fields.
    Table 1. Filter Condition form
    FieldDescription
    Label Name of the condition
    Description Description of the condition
    Application Application scope for this record.
    Condition Conditions based on AND and OR. Because the Auth Policy is Allow Policy, the condition for Trusted Mobile App is set true in the example shown on the image.
    Condition
  7. Click Submit.

Result

The policy input and filter conditions are created for the Trusted Device feature. Users can proceed with using the Trusted Device feature to access the ServiceNow instance from untrusted networks by using the Now Mobile app. For more information, see Register a trusted device.