Data encryption at rest
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-12-2020 03:59 AM
I found the below whitepaper on data encryption https://www.servicenow.com/content/dam/servicenow-assets/public/en-us/doc-type/resource-center/white...
But how can i find out whether data encryption has been enabled for our instance .
Please guide me
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-12-2020 05:29 AM
As you found from the white paper, there are several options for configuring encryption and thus there are several ways to check.
For hardware based full disk encryption, I think you can only check by looking at your contract to see if you have paid for full disk encryption or not. I don't think you can tell by looking at your instance.
Similarly for database encryption, you would need to check the change records for you instance to see if it has been converted to use database encryption. For this or full disk encryption, your ServiceNow account team could verify this for you.
For field encryption, check System Security > Field Encryption > Encrypted Field Configurations.
For edge encryption, you would need to proxy host, so check the property edgeencryption.proxy.host and see if that is a valid host on your network.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-12-2020 06:33 AM
Hi Jeff
Thanks for your reply . where can i find the property edgeencryption.proxy.host ?
i cant find it in sys_properties.list
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-12-2020 06:47 AM
Sorry, I mislead you. that property is in the edgeencryption.properties file on the edge encryption server.
This way is easier, elevate your role to security_admin (from the user menu in the upper left), then navigate to Edge Encryption Configuration > Proxies. You will not see that module unless it is both installed and you elevate your role. Admin alone will not see it. And even then, it might not be configured. Edge encryption is a bit rare. You would most likely know if you are using it.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
05-12-2020 06:58 AM
Hi Jeff
Thanks for the clarification . One last thing - Similarly for database encryption, you would need to check the change records for you instance to see if it has been converted to use database encryption
What do you mean by change records here ? change management module records ?
