How to make secure notes visible on SIR ?

Go to solution
IceIronDragon
Tera Guru

‎06-20-2022 08:03 AM

Hello All,

I have the secure notes added to form layout and as well as notes configuration but still not able to see secure notes on the form of SIR 

Labels:
0 Helpfuls
  • 1,226 Views
1 ACCEPTED SOLUTION

Go to solution
IceIronDragon
Tera Guru

‎07-05-2022 07:07 AM

This is a known issue highlighted by ServiceNow post SanDiego upgrade.

open a Hi case and they will run the security jobs to fix this issue 

Hop to  instance as Maint user with Write access.
2) Need to verify kmf installed properly else need to request for kmf re-install before continuing

3) Navigate to System Security Security Jobs Create New
4)Type the Name (Key Migration Context) and select Type Key Migration Context to Module.
5) Set the time window to execute the job during customer approved time window (time window of start 00:00:00 and end as 23:00:00)
6) Click Submit.
7) Click Start to start the job

😎 When the Key Migration job is finished, navigate to System Security Security Jobs Create New.
9) Type the Name (Data Migration Context) and select Type Data Migration Context to Module.
10) Set the time window to execute the job during customer approved time window (time window of start 00:00:00 and end as 23:00:00)
11) Click Submit.
12) Click Start to start the job.

13) When the Key Migration job is finished, navigate to System Security Security Jobs Create New.
14) Type the Name ( Migrate Attachment Context to Module) and select Type Migrate Attachment Context to Module and select table "Talent Acquisition"
15) Set the time window to execute the job during customer approved time window (time window of start 00:00:00 and end as 23:00:00)
16) Click Submit.
17) Click Start to start the job.

View solution in original post

0 Helpfuls
8 REPLIES 8

Go to solution
Prudhvi T
ServiceNow Employee
ServiceNow Employee

‎06-22-2022 09:14 AM

Hi  @IceIronDragon, If you don't see secure notes column even after adding it to the form, it could be due to missing field encryption crypto modules.

If you are using a fresh sandiego instance follow below steps to fix it.

  1. Navigate to "Field encryption module" list and create a new record with default values
  2. Navigate to Module access policies and create policies for required roles.

If your instance is upgraded from rome to sandiego, these records should be already available, if not please follow below steps to fix it. 

Rerun the autoKeyMigration steps
1. Navigate to security jobs => All
2. Create New
3. Provide a name
4. Provide "Type" as "Key Migration Context to Module"
5. Provide "Time window end" as 23 hrs
6. Save and start the job

Rerun the auto**Data**Migration steps
1. Navigate to security jobs => All
2. Create New
3. Provide a name
4. Provide "Type" as "Data Migration Context to Module"
5. Provide "Time window end" as 23 hrs
6. Save and start the job

 

Thanks!

0 Helpfuls

Go to solution
IceIronDragon
Tera Guru
In response to Prudhvi T

‎06-22-2022 12:13 PM

it only gives employee document as the table option in drop menu 

0 Helpfuls

Go to solution
IceIronDragon
Tera Guru

‎07-05-2022 07:07 AM

This is a known issue highlighted by ServiceNow post SanDiego upgrade.

open a Hi case and they will run the security jobs to fix this issue 

Hop to  instance as Maint user with Write access.
2) Need to verify kmf installed properly else need to request for kmf re-install before continuing

3) Navigate to System Security Security Jobs Create New
4)Type the Name (Key Migration Context) and select Type Key Migration Context to Module.
5) Set the time window to execute the job during customer approved time window (time window of start 00:00:00 and end as 23:00:00)
6) Click Submit.
7) Click Start to start the job

😎 When the Key Migration job is finished, navigate to System Security Security Jobs Create New.
9) Type the Name (Data Migration Context) and select Type Data Migration Context to Module.
10) Set the time window to execute the job during customer approved time window (time window of start 00:00:00 and end as 23:00:00)
11) Click Submit.
12) Click Start to start the job.

13) When the Key Migration job is finished, navigate to System Security Security Jobs Create New.
14) Type the Name ( Migrate Attachment Context to Module) and select Type Migrate Attachment Context to Module and select table "Talent Acquisition"
15) Set the time window to execute the job during customer approved time window (time window of start 00:00:00 and end as 23:00:00)
16) Click Submit.
17) Click Start to start the job.

0 Helpfuls

Go to solution
addison barry
Kilo Contributor

‎07-05-2022 05:53 PM

At the moment, all “Master password re-prompt” does for Secure Notes is ask me for a password when I want to edit it. Since there is no password, this feature doesn’t actually protect any content.

I propose making this feature actually lock the note text itself. (Yes, I understand that this is a UI protection rather than an extra layer of crypto, but this would protect me against an attacker who happens upon my desk while I’m answering the door).

The “Master password re-prompt” feature should lock different item types differently:

  • Logins: passwords
  • Cards: numbers and security codes
  • Identities: license number, passport number, social security number
  • Secure Note: notes (maybe show the size when locked?)

This is related to Master password re-prompt on specified sub-fields 10, which would allow locking specific fields. That would be as simple as adding a lock icon by every item when in edit mode, respecting the defaults as outlined above. If you implement that feature, I’d suggest that custom items in Secure Notes should default to being locked when the note is locked. This isn’t part of my standalone request because it can’t be changed without this linked request.

0 Helpfuls