Configuring Card Data Security

  • Release version: Australia
  • Updated March 12, 2026
  • 1 minute to read

    • Plan and configure your implementation of Card Data Security by following the tasks listed in this configuration overview.

    Configuration overview

    Refer to the following steps to set up and configure Card Data Security for the first time.

    Table 1. Configuration overview for Card Data Security
    Step Description Where to perform
    Provision our tokenizer service and complete the onboarding procedure

    Ensure that you have provisioned our tokenizer service and that you have completed the onboarding procedure. Tokenizer service accounts are hosted on multi-tenant shared infrastructure, isolated by account and vault boundaries.

    For more information, contact your ServiceNow account representative.

    		 Tokenizer service
    Create tokenizer service vault

    Create the tables in our tokenizer service. These tables will contain the PCI data from Third-Party Systems.

    		 Tokenizer service
    Set up connections, service accounts, and context-aware authorization in the tokenizer service

    Set up the connections, service accounts, and context-aware authorization to enable communication between your ServiceNow instance, the tokenizer service, and the Third-Party System.

    		 Tokenizer service

    Set up Visa integration

    Set up Mastercard integration

    Install and set up integrations to the Third-Party Systems (such as Financial Services Operations Integration with Visa, and Financial Services Operations Integration with Mastercard). Card Data Security requires these integrations to function correctly.

    		 ServiceNow
    Install Card Data Security

    Install Card Data Security (sn_data_sec) from the ServiceNow Store.

    		 ServiceNow
    Set up OAuth for Card Data Security
    For OAuth authentication, follow these steps to set up connectivity with your ServiceNow instance. These connections are required to get file metadata and download URLs from files hosted in the tokenizer service vault.
    Note:
    You must set up OAuth to use the Card Data Security container components, including the PAN reveal components and the file viewing component.
    		 ServiceNow
    Set up tokenized HTTP connection & credential aliases

    For API authentication, define the connection and credentials in ServiceNow to communicate to the Third-Party System via our tokenizer service.

    		 ServiceNow
    Manage Tokenizer Resource Configurations

    Review the entries for each endpoint that sends and receives tokenized data.

    		 ServiceNow
    Customize your card disputes workflow with the Card Data Security container

    Card Data Security includes a PAN reveal component and a document viewing component.

    To make changes, you can modify the preconfigured Card Data Security components using UI Builder.

    		 ServiceNow