Authentication and Authorization
When you access the web service for Service Management Automation, you must provide credentials that define your access the Service Management Automation environment.
Authentication is the verification of credentials used by the connection attempt to the web service. Any request must either specify a username and password, or it must specify that it is using the credentials of the current user.
With a request based on HttpWebRequest .NET class, you can set the Credentials property with a NetworkCredential class using an appropriate name and password. To use the credentials of the current user instead of specifying specific credentials, set the UseDefaultCredentials property of the request to true.
The Service Management Automation Web service supports both Basic Authentication and Windows Authentication.
Authorization occurs after successful authentication and determines that the credentials of the connection have permission in Service Management Automation to perform the requested activities. You authorize users to access the Service Management Automation installation and perform required functions on runbooks and folders by adding users to the "smaAdminGroup" local group on each Service Management Automation Web service host.
Securing the web service with SSL
By default, Service Management Automation comes with an HTTPS endpoint on port 9090 and uses a self-signed certificate for SSL. For information on replacing untrusted self-signed certificates with trusted certificates, see: Post-installation tasks for Service Management Automation.