web_service_access_only user is not working as expected


Description

There is a need to use web_service_access_only for a user to integrate with third party but it does not seem to be working properly. If we set this field value to "true" ( (ie web_service_access_only field) for a user in the sys_user table, this account can still login with the login.do page which was supposed to be blocked for this user. Ideally this account should be a non-interactive user once this field is enabled.

Release or Environment

Madrid Patch 9

Cause

The non interactive plugin named "com.glide.security.non_interactive_users" is NOT installed on the instance. You might be able to restrict impersonation to a non interactive user without this plugin but the user will still be able to login to the instance from UI using login.do if this plugin is not installed.

Resolution

Install the plugin "com.glide.security.non_interactive_users" with the help of normal Plugin Activation procedure detailed in https://support.servicenow.com/kb_view.do?sysparm_article=KB0695172