Hi team, I am unable to access my PDI, it says Your connection is not private. I am unable to open it, when I tried in incognito mode, I can able to access but site is not secured. Any PDI maintenance going on? Thank you,Arkesh
We have a use case were we want certain users to be only able to use MFA by an authentication App whilst allowing other users to choose Email or authentication App. I have configured MFA to allow email for users for all users except those with the sp...
My job is to minimize the SAML "notBefore" or "notOnOrAfter" constraint duration. I can achieve this using the property mentioned below. The default value was 180, and according to the documentation I found the recommended value is less than 60.Can s...
I would like to confirm some questions regarding MFA with SMS.When logging in using SMS, is the value of Multi Factor Type in the sys_user_multi_factor_setup table set to SMS?Also, is it possible to delete the SMS-based authentication code for each u...
Hi, With migrate to Yokohama, users without SSO must enable the MFA.For some users we want to use the Email Authentication only.When logging in, the user got the message :And on the profile page, when clicking on Configure Multi-factor Authentication...
Do we have any direct approach by ServiceNow? to enforce MFA to the users who does not have any roles - Yokohama version.I have used a dummy role to achieve this as workaround.However, I am curious to know if there is a certain process by ServiceNow....
Hi Everyone, I need your help.I need to implement encryption for both outbound and inbound emails within my company. We are using the SN (ServiceNow) email client to send and receive messages. To ensure secure communication, I plan to configure S/MI...
Just a couple questions on Data Privacy 1. Can you rollback anonymization at anytime after the job has completed (ie. 6 months later) or is it just immediately after job is run? 2. If you anonymize phone number, can you still click on the phone num...
Hi everyone, We intend to move to CLEE and we currently have our data protected by Edge Encryption.I am wondering what the best way of approaching this would be. Has anyone any experience in this process, can the data be migrated using CLEE from one ...
Some of my users don’t want to use TOTP on a personal phone, don’t have a work phone, or don’t have smartphones at all. While I know they can install an authenticator app, they’d prefer to use email from the start without being forced to download any...
Hi all, The release note states that MFA is enforced from Yokohama version onwards.However, on instance, role based MFA is already present. If you want to enforce MFA on all users despite the roles, do you simply have to inactivate the setting? or do...
Hi everyone,I’m currently working on a request titled “Set Safe Content Security Policy for SVG Files”. The goal is to review and possibly implement a content security policy specifically for handling SVG files, to ensure safe usage in the platform.A...
Hi, We use MFA for external customers which works fine but we've recently noticed that when the 'Don't challenge for MFA on this browser for the next 8 hours' tickbox is ticked it only works for 1 hour, i.e., it won't challenge for MFA for the first...
Hi All, After upgrading to Xanadu, Non admins are seeing the available crypto modules in update set picker. Can we hide this? Thanks!
Hello Community, Have anyone tried using Ivanti API? When I tried that (in a customer instance) I got "Request not sent to uri= https://platform-eu.risksense.com/api/v1/client : org.apache.commons.httpclient.HttpException: No issuer certificate found...
