Hi Everyone,
For the Service Catalog, we are planning to use the ISC Admin Service Account and are currently logging in with the standard SailPoint username and password. Our main concern is determining the correct way to configure authentication for this setup.
Could you please advise if anyone has recommendations or best practices for configuring secure and appropriate authentication for the ISC Admin Service Account?
Please check the instructions given in the documentation Configuring Connection Parameters
ETA: The original post I was replying to was deleted because it was rightly flagged for being AI generated and wrong
Original Reply
Interesting, is this a new feature of the Service Catalog Integration (and also the create-access-request API endpoint) where a user-based PAT is not required to connect ServiceNow to ISC?
It doesn’t seem the API spec allows for an API client-based token, it requires a user attribution and a user with ORG_ADMIN to request on behalf of other users.
So I’m curious how you came up with your answer
Since this is an identity, you are required to have a username/password and also set up 2FA for it since it will have elevated access. Ideally the password is stored in a secure vault and the 2FA factor is something only people who have access to the password should have.
You cannot generate a PAT for another user, so it requires logging in interactively as this ISC Admin Service Account identity, then generating the PAT to be used in ServiceNow
