ServiceNow MCP Server
by pavecer
Server Configuration
Describes the environment variables required to run the server.
| Name | Required | Description | Default |
|---|---|---|---|
| LOG_LEVEL | No | Minimum log level emitted to stdout: 'debug', 'info', 'warn', or 'error' | info |
| ENTRA_AUDIENCE | No | Expected 'aud' in tokens; defaults to 'api://<ENTRA_CLIENT_ID>' | api://<ENTRA_CLIENT_ID> |
| ENTRA_CLIENT_ID | Yes | App registration client ID | |
| ENTRA_TENANT_ID | Yes | Entra directory (tenant) ID | |
| ENTRA_OAUTH_SCOPES | No | Scopes advertised in OIDC discovery | api://<ENTRA_CLIENT_ID>/access_as_user openid profile offline_access |
| ENTRA_AUTH_DISABLED | No | Skip Bearer validation -- local dev only, never in production | false |
| ENTRA_CLIENT_SECRET | Yes | App registration client secret (for Dynamic Client Registration) | |
| SERVICENOW_PASSWORD | Yes | Integration user password | |
| SERVICENOW_USERNAME | Yes | Integration user login | |
| CORS_ALLOWED_ORIGINS | No | Comma-separated browser origins for CORS-enabled endpoints | |
| SERVICENOW_CLIENT_ID | Yes | OAuth App Registry client ID | |
| ENTRA_ALLOW_ANY_TENANT | No | Accept any Microsoft tenant token | false |
| ENTRA_ALLOWED_AUDIENCES | No | Comma-separated extra 'aud' values to accept (custom App ID URIs) | |
| LOG_INCLUDE_ERROR_STACK | No | Include error stack traces in error log entries | false |
| SERVICENOW_INSTANCE_URL | Yes | ServiceNow base URL (e.g., https://instance.service-now.com) | |
| ENTRA_TRUSTED_TENANT_IDS | No | Accepted remote tenant IDs (multi-tenant scenarios) | |
| SERVICENOW_CLIENT_SECRET | Yes | OAuth App Registry client secret | |
| LOG_INCLUDE_CALLER_IDENTITY | No | Attach caller 'oid'/'upn' to every log entry. Off by default to keep PII out of App Insights | false |
| SERVICENOW_OAUTH_GRANT_TYPE | No | Override grant type: 'password' or 'client_credentials' | auto |
| SERVICENOW_OAUTH_TOKEN_PATH | No | ServiceNow token endpoint path | /oauth_token.do |
| ENTRA_DCR_REGISTRATION_TOKEN | No | Bearer token required on POST /oauth/register | |
| ENTRA_DCR_ALLOW_UNAUTHENTICATED | No | Allow open Dynamic Client Registration when no token is configured | false |
| SERVICENOW_OAUTH_CLIENT_AUTH_STYLE | No | OAuth client auth style: 'request_body' or 'basic' | auto |
| SERVICENOW_REQUESTED_FOR_DIAGNOSTICS | No | Include requested_for diagnostics in tool/API responses | false |
| SERVICENOW_REQUESTED_FOR_CALLER_FIELDS | No | Entra token claims to use as identity source | callerUpn |
| SERVICENOW_REQUESTED_FOR_LOOKUP_FIELDS | No | 'sys_user' fields for identity resolution | email,user_name |
| SERVICENOW_REQUIRE_CALLER_ACCESS_TOKEN | No | When 'true', refuse calls without 'x-servicenow-access-token' (per-user ACL enforcement) | false |
| SERVICENOW_REQUESTED_FOR_DIAGNOSTICS_INCLUDE_PII | No | Include raw caller identifiers in diagnostics (for short-lived troubleshooting only) | false |
| SERVICENOW_REQUESTED_FOR_FALLBACK_TO_CALLER_VALUE | No | Fall back to UPN if no 'sys_user' match | true |
Capabilities
Server capabilities have not been inspected yet.
Tools
Functions exposed to the LLM to take actions
| Name | Description |
|---|---|
No tools | |
Prompts
Interactive templates invoked by user choice
| Name | Description |
|---|---|
No prompts | |
Resources
Contextual data attached and managed by the client
| Name | Description |
|---|---|
No resources | |
Latest Blog Posts
MCP directory API
We provide all the information about MCP servers via our MCP API.
curl -X GET 'https://glama.ai/api/mcp/v1/servers/pavecer/mcp-server-servicenow'
If you have feedback or need assistance with the MCP directory API, please join our Discord server