Introduction to Machine identity Console Overview The Machine Identity Console (MIC) enables administrators to manage and monitor machine identities, that are used to identify, authenticate, and authorize software entities accessing ServiceNow resources. Machine identities are digital identities that perform tasks autonomously. Unlike human identities, MIs are not tied to a person and require distinct authentication and verification methods. Standard user-based security measures do not apply. The Machine Identity Console helps you: Manage service accounts used for integrations.Understand the security score of these identities.Review recommendations to improve security posture. Key Capabilities On the Machine Identity Console overview page, you can view: Total machine identity accounts and accounts with high privilege roles.Unique API calls (last 7 days).Authentication methods used (last 7 days).Security score and findings for your machine identities. Home page The Home Page provides a consolidated view of machine identity usage and activity across the system. It consists of following key metrics: Total Machine Identity Accounts Represents the total number of machine identities in the system.Includes:Accounts with Identity type = Machine (Also Web Service Access = true) and Accounts that make API calls Accounts with High Privilege Roles Shows the total number of machine identity accounts assigned high privilege roles.High privilege roles are defined in sys_icenter_role_config table. Unique API Calls (Last 7 Days) Represents the number of distinct API call patterns in the last 7 days.A unique API call is defined as a combination of: Machine IdentityAPI Resource & MethodAuthentication Method Authentication Methods Used (Last 7 Days) Displays the distribution of API calls grouped by authentication method.Provides insights into how machine identities are authenticating across the system. Inbound Integrations Inbound integrations in the Machine Identity Console allow you to configure and manage external applications that access ServiceNow APIs. It provides a centralized hub for managing application settings and API credentials, ensuring secure communication between ServiceNow and external systems. Supported Connection Types OAuth – Authorization Code Grant: Authenticate with an OAuth server that trusts the ServiceNow resource.OAuth – Client Credential Grant: For integrations from third-party OAuth clients to ServiceNow.OAuth – JWT Bearer Grant: Authenticate using JSON Web Token (JWT).Third-Party ID Token via OIDC: Accept tokens issued by external OIDC providers.OAuth – Resource Owner Password Credential Grant: Authorize access via direct user credentials (requires authentication + consent through local login, SSO, or MFA). Machine Identity Security Score and Findings The security score in the Machine Identity Console evaluates the risk associated with your machine identities based on their configuration and usage. Lower score = higher risk. Findings are linked to recommendations so you can improve the score. Security Findings FindingDescriptionAccounts with no login for 100 daysIdentifies accounts that have not accessed any API in the last 100 days.Accounts using Basic AuthenticationFlags accounts still using username and password instead of secure authentication methods.Integration accounts with Web Service Access disabledHighlights accounts that have WSA disabled, potentially blocking integrations.Accounts performing both UI and API loginsDetects accounts used for both interactive (UI) and automated (API) logins, increasing governance risk. Recommendations Replace Basic Authentication with OAuth or JWT authentication methods.Keep machine identities separate from human accounts (avoid dual UI/API use).Deactivate or review inactive accounts (>100 days).Ensure Web Service Access is enabled where required. Business Impact Implementing and managing machine identities through MIC provides: Improved security posture by reducing risks associated with outdated authentication.Centralized governance of all integration accounts.Operational efficiency through proactive findings and recommendations.