How to use encryption context
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎06-01-2018 07:12 AM
I am trying to follow the instructions on https://docs.servicenow.com/bundle/helsinki-platform-administration/page/administer/encryption/task/t_EncryptionContextSetup.html but there appears to be some important information missing from this.
I have:
>Created a Security Context and named it KB 1.
>Created a new role "Role 1" and added the Security Context KB 1 to it
> Created three new fields on kb_knowledge and set all field types to Encrypted Text
What I am not understanding is how the encryption piece is expected to work.
I have 3 fields on the KB article page. All 3 fields will be visible by three distinct groups of users and each will have their own role.
Am I supposed to set all 3 of my roles to the same Security Context? How does the Security Context refer back to the fields on the kb_knowledge form?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎06-04-2018 01:30 AM
It seems you haven't activated the UI Macro as a last step. Please activate UI Macro and login back to see the result.
Procedure
- Click System UI > UI Macros.
- Open the encryption_select UI macro.
- Select the Active check box.
- Click Update.
https://docs.servicenow.com/bundle/geneva-servicenow-platform/page/administer/encryption/task/t_AddAnEncryptionContextSelector.html
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎06-04-2018 07:17 AM
Thank you for your response - I certainly did not do that step.
I still don't see my encrypted fields though so I must have skipped something.
What I've done:
>Created 4 custom Encrypted Text fields on the kb_knowledge form
>Created 4 custom roles named KB 1, KB 2, KB 3, KB 4
>Created 2 encryption contexts named KB 1 and KB 2
>For the KB 1 and KB 2 custom roles, I set these to the KB 1 encryption context
>Signed in/signed out as admin who has the KB1-4 custom roles
When I look at the KB form, I do not have visibility to any of the custom encrypted fields on the form. They are there in form designer but not on the form itself.
I still don't see how a role is set to each of the fields on my KB form. I have my roles associated to encryption contexts but the fields themselves aren't set to an encryption context so how do I tell it which role to use?
My questions are
1) Would each encrypted field require it's own encryption context? Or can you have one context for multiple fields?
2) How do you assign which roles should have access to the contexts? Or how do you tell the encrypted fields which context to use?
