Forced encryption on attachments

Go to solution
Kim Sullivan
Tera Guru

‎07-27-2023 08:23 AM - edited ‎07-27-2023 08:23 AM

 

Since upgrade to Utah, all our attachments are being encrypted.  In Tokyo and before there was a checkbox here to choose to encrypt.  That is now gone and none is not the default option.

ServiceNow support says this is OOB, but I can't believe this was intended. 

2023-07-20_8-49-50.png

#encryption

#crypto

#attachments

Preview file
46 KB
  • 10,044 Views
1 ACCEPTED SOLUTION

Go to solution
Kim Sullivan
Tera Guru

‎07-27-2023 12:15 PM - edited ‎07-27-2023 01:51 PM

HI told me to post on community and this was an OOB setting.  I spent another 3 hours on it and figured this out -- 

update the optional_attachment_encrypt UI macro.

OOB config:

OOB.png

 

Updated: 

Updated.png

 

You also need to comment out these lines:

KimSullivan_0-1690491092953.png

 

View solution in original post

31 REPLIES 31

Go to solution
Alex Upmann1
Tera Contributor
In response to Steven Parker

‎01-01-2024 11:53 AM

I have this same issue on my instance but when I follow the link to the knowledge article, I get a message saying my role doesn't grant me access to the article.  Now I can take that up with SN and my SN account manager but can you list the pertinent points from the article?

Go to solution
Sadrudeen Ashra
Tera Contributor
In response to Alex Upmann1

a month ago

1. Elevate your role

 2. go to encrpt config table (sys_platform_encryption_configuration) and inactivate the table in which you don't want to encrypt
or

create a record with the table in which you don't want the encrypt attachment to happen

3. add this system property if it's not in your system, "com.glide.encryption.enable_attachment_key_ui" and set it to false.

0 Helpfuls

Go to solution
Trish Mac
Mega Guru
In response to Kim Sullivan

‎10-31-2024 11:27 AM - edited ‎10-31-2024 11:28 AM

Hi @Kim Sullivan , I'm on Xanadu in DEV and TEST.  Xanadu is the FIRST time we've seen the Encrypt Attachments pop up and we were on Tokyo, then Vancouver and hadn't had this come up.  I tried your code change in the optional_attachment_encrypt UI macro and this didn't work for me.

 

My code looks like this:  

 

Thanks,

Trish

Preview file
60 KB
0 Helpfuls

Go to solution
SayaliK
Tera Contributor
In response to Kim Sullivan

a month ago

Hi @Kim Sullivan ,
Could you please assist with the Yokohama version? I've implemented the scripting changes you recommended, but the images are still being encrypted.

0 Helpfuls

Go to solution
Kim Sullivan
Tera Guru
In response to SayaliK

a month ago

Will you post your script so I can confirm?  Also, keep in mind, impersonating is not a good tool to test encryption.  Its better to use a local user and confirm that way.

0 Helpfuls