ServiceNow User Management (UM) Integration Reference
ServiceNow (UM) Components Certified for Integration with Oracle Access Governance
The ServiceNow (UM) components that you can integrate with are listed below.
Table - Certified Components
| Component Type | Component |
|---|---|
| System | ServiceNow release Xanadu or later |
Supported Configuration Modes for ServiceNow (UM) Integrations
Oracle Access Governance integrations can be setup in different configuration modes depending on your requirement for on-boarding identity data, and provisioning accounts.
- Authoritative Source
You can use ServiceNow (UM) as an authoritative (trusted) source of identity information for Oracle Access Governance.
- Managed System
You can manage ServiceNow (UM) accounts, groups and roles.
Supported Operations When Provisioning To ServiceNow (UM)
When you provision an account from Oracle Access Governance to ServiceNow (UM) certain operations are supported.
- Create User
- Update User
- Enable User
- Disable User
- Assign Group
- Assign Role
- Remove Group
- Remove Role
For more details see Oracle Access Governance Integration Functional Overview and Integrate with ServiceNow (UM).
Default Supported Attributes
Oracle Access Governance supports the following default ServiceNow (UM) attributes.
Table - Default Attributes for ServiceNow (UM) - Authoritative Source
| Entity | ServiceNow (UM) Account Attribute | Oracle Access Governance Account Attribute | Oracle Access Governance Identity attribute display name |
|---|---|---|---|
| User | sys_id | uid | Unique Id |
| name | name | Employee user name | |
| first_name | firstName | First name | |
| last_name | lastName | Last name | |
| active | status | Status | |
| phone | phone | Phone | |
| mobile_phone | mobilePhone | Mobile phone |
Table - Default Attributes for ServiceNow (UM) - Managed System
| Entity | ServiceNow (UM) Account Attribute | Oracle Access Governance Account Attribute | Oracle Access Governance Identity attribute display name | Updateable Field | Transformation |
|---|---|---|---|---|---|
| User | sys_id | uid | Unique Id | No | No |
| user_name | name | User login | Yes | Yes | |
| first_name | firstName | First name | Yes | Yes | |
| last_name | lastName | Last name | Yes | Yes | |
| title | title | Title | Yes | Yes | |
| department | department | Department | Yes | No | |
| phone | phone | Phone | Yes | No | |
| mobile_phone | mobilePhone | Mobile phone | Yes | No | |
| Yes | Yes | ||||
| locked_out | accountisLockedout | Account is locked out | Yes | No | |
| date_format | dateFormat | Date format | Yes | No | |
| calendar_integration | calendarIntegration | Calendar integration | Yes | No | |
| time_zone | timeZone | Time zone | Yes | No | |
| web_service_access_only | webServiceAccessOnly | Web service access only | Yes | No | |
| internal_integration_user | internalIntegrationUser | Internal integration user | Yes | No | |
| active | status | Status | Yes | No | |
| Role | roles | Roles | No | No | |
| Group | groups | Groups | No | No |
Default Matching Rules
In order to map accounts to identities in Oracle Access Governance you need to have a matching rule for each orchestrated system.
The default matching rule for the ServiceNow (UM) orchestrated system is:
Table - Default Matching Rules
| Mode | Default Matching Rule |
|---|---|
| Authoritative Source Identity matching checks if incoming identities match an existing identity or are new. |
Screen value:
Attribute name:
|
| Managed System Account matching checks if incoming accounts match with existing identities. |
Screen value:
Attribute name:
|
For information about Oracle's commitment to accessibility, visit the Oracle Accessibility Program website at http://www.oracle.com/pls/topic/lookup?ctx=acc&id=docacc.
Access to Oracle Support
Oracle customer access to and use of Oracle support services will be pursuant to the terms and conditions specified in their Oracle order for the applicable services.