Forced encryption on attachments

Go to solution
Kim Sullivan
Tera Guru

‎07-27-2023 08:23 AM - edited ‎07-27-2023 08:23 AM

 

Since upgrade to Utah, all our attachments are being encrypted.  In Tokyo and before there was a checkbox here to choose to encrypt.  That is now gone and none is not the default option.

ServiceNow support says this is OOB, but I can't believe this was intended. 

2023-07-20_8-49-50.png

#encryption

#crypto

#attachments

Preview file
46 KB
  • 8,569 Views
1 ACCEPTED SOLUTION

Go to solution
Kim Sullivan
Tera Guru

‎07-27-2023 12:15 PM - edited ‎07-27-2023 01:51 PM

HI told me to post on community and this was an OOB setting.  I spent another 3 hours on it and figured this out -- 

update the optional_attachment_encrypt UI macro.

OOB config:

OOB.png

 

Updated: 

Updated.png

 

You also need to comment out these lines:

KimSullivan_0-1690491092953.png

 

View solution in original post

24 REPLIES 24

Go to solution
Jeff Boltz1
Mega Guru
In response to Jeff Boltz1

‎10-20-2023 08:16 AM - edited ‎10-20-2023 08:17 AM

Additional property:  

 

glide.attachment.encrypt_by_default

 

Export the XML before you mess with it as it can not be reverted.  Check with SN first maybe?

Go to solution
Eugene Severi
Tera Contributor

‎03-27-2024 04:08 PM - edited ‎03-27-2024 04:08 PM

We tried to update the glide.attachment.encrypt_by_default value to false all ways I could think of, they all failed.

 

In the end, support needed to set the property directly on the db on our behalf. Can confirm once changed it works!

 

Files which are attached to tasks i.e. Incidents using drag/drop will no longer be encrypted by default.

0 Helpfuls

Go to solution
Kim Sullivan
Tera Guru

‎04-30-2024 07:58 AM

Update to this -- when you use the REST step in Flow actions and choose Save As Attachment, the files are defaulting to encrypted, despite all the default encryption being turned off per this article.  I don't see a way to change this and have a case open with Support on it.

0 Helpfuls

Go to solution
Anupriya23
Tera Contributor
In response to Kim Sullivan

‎06-20-2024 07:29 AM

I am facing the same issue only with HR module, all the attachments are getting encypted by default when property com.glide.encryption.enable_attachment_key_ui is false in the syatem.

Modifying macro doesn't help, started happening after washigton upgrade it seems .

checked the Column Level Encryption (CLE), which is active true for HR cases but also unable to deactivate these by our own.

0 Helpfuls

Go to solution
BelenDB
Tera Contributor

‎07-12-2024 12:05 AM

Hi @Kim Sullivan , your solution worked perfectly for me 🙂

 

Thanks a lot!! I was struggling making the -None- as default option. 

0 Helpfuls