We need to revoke the admin access of the ServiceNow from IdentityNow , but we are not able to revoke them and it is throwing error insufficient privileges .
Do we need to any additional ACL (Access Control Lists) or permissions for the Service Account
Hi Sharvari,
In the release note here (What's New in ServiceNow - Compass). Add / remove entitlement is listed as supported. Not sure which one is correct.
I’m using the one relies on Virtual Appliances. The connector on the SNOW side is also indicating automated revocation is supported (https://store.servicenow.com/sn_appstore_store.do#!/store/application/611872574fcc82004f167d2ca310c792/).
The VA-based connector doesn’t support it - Supported Features
That said, you could build a custom workflow that makes an API call to the ServiceNow API to deactivate accounts when an identity changes lifecycle states. You should work with your ServiceNow team to figure out the right table names and calls to make, but here’s a starting point - https://developer.servicenow.com/dev.do#!/reference/api/sandiego/rest/c_TableAPI#table-PATCH