A few weeks ago a question was asked on Slack and someone asked me to post about it.
Could anyone define some advantages of using a service account rather than a user account when it comes to integrations?
There was a few pros right away;
Check the "Web Services Access Only" on the user account. It's part of the Non-Interactive Session Plugin.
Now really this is where this post was going to end. However I had gone into how I do service accounts.
rest_api_explorerare given. You could add other older roles like the SOAP roles but we encourage REST.
We use SSO so user's can't use their personal account to do the REST calls outside of the browser. We make the new user have a manager of the person who is asking for the service account. If the service account needs more access, we can add it to other groups where the access is proper. I do intend to write up something or link to something to help convey what the APIs are they have access to but generally I just point them the Rest API Explorer
Further Reading: https://community.servicenow.com/community?id=community_blog&sys_id=b4fca2a5dbd0dbc01dcaf3231f961900