The ServiceNow® Access Management includes access control lists (ACLs), security attributes, contextual security manager, data filtration, and many more controls. These tools provide finer control and improved security for managing data access. Access Management was enhanced and updated in the Xanadu release.

Access Management highlights for the Xanadu release

• Fine-tune your access control with the new Deny-Unless ACL and query operators.
• Enhance ACL security with a new default denial behavior.
• Identify and fix empty or misconfigured ACLs with new ACL creation rules.

See Access Control List Rules for more information.

Changed in this release

Deny-Unless condition for ACLs

A new decision type field helps administrators define the conditions that give or deny users access to data. It enables more granular decision-making while defining the right access strategy on the platform.

Enhanced ACL Security

If an ACL is misconfigured or empty, you can deny access to data by default, enhancing the overall security of the platform.

ACL Query Behavior

Fine-tune your access control by dictating rules for querying data with the introduction of new operators: query match and query range.

>Explicit Roles behavior adjustment

When the system property glide.security.explicit_roles.do_not_fix is true, the snc_internal role is no longer added in memory or to the User Roles [sys_user_has_role] table.

Activation information

Access Management is a ServiceNow AI Platform feature that is active by default.