How to use Oauth Client Secret and ID without Integrated User Account due to Global MFA Enforcement

[radcox]

Service Now has recently announced they will be requiring MFA for all users performing non-SSO login. I saw that the module supports passing Oauth; however, in the example it requires an authenticated user which would no longer work with MFA. Is there a way to authenticate directly with Oauth client ID and Secret? How are others doing this or how do others plan to handle this? Examples would be appreciated. I created an Application Registry for a new Inbound Integration but was unsuccessful in my attempts to authenticate and I am not familiar with the entire scope of this change from Service Now regarding what will be exempt.

[gdbarron]

Thanks for the heads up @radcox. I recently spun up a Zurich PDI and was not able to authenticate with the module. I went back to Yokohama and had no issues. Someone will need to do some research to understand how this affects the module and what it will take to update. In other systems the idea of service accounts are introduced which are not tied to a user and still allow automation, but not sure if snow has this.

https://www.servicenow.com/docs/bundle/zurich-platform-security/page/integrate/authentication/concept/mfa-enforcement.html