Consolidated page of all release notes for Access Management from Zurich to Australia.
How to use this page
To help you prepare for your upgrade, we have combined the cross-family Access Management release notes onto one page. Read this summary of the new features, changes, and updated information for your product from Zurich to Australia.
Tip: If there were no updates for a release notes section in a certain family release, we included a short note for your reference. For example, if a product did not have any updates in Tokyo, the row says "No updates for this release."
Important information for upgrading Access Management to Australia
Before you upgrade to Australia, review these pre- and post-upgrade tasks and complete the tasks as needed.
| Release |
Release notes |
Zurich |
No updates for this release. |
Australia |
No updates for this release. |
New features
Between your current release family and Australia, new features were introduced for Access Management.
| Release |
Release notes |
Zurich |
- Machine identity access controls
- Enforce fine-grained access to data via REST or SOAP endpoints using Machine Identity Access Controls. This feature enables you to define which integrations can access specific data, confirming that the integrations only
have access to the resources they need.
- Scripting Governance Tool tool and role
- Review and help reduce the number of users with scripting privileges using the Scripting Governance Tool. This tool helps improve platform security with scripting governance based on user role.
A new deny-by-default
behavior is enforced for scripting unless you have the snc_required_script_writer_permission role. After an upgrade or zBoot, this role is automatically assigned via the Conditional Script Writer group.
- Datatype ACL
- Simplify and help reduce redundant ACL definitions with Datatype ACLs. Create a single ACL to target all table columns of a specific data type, streamlining access control configurations.
|
Australia |
No updates for this release. |
Changes
Between your current release family and Australia, some changes were made to existing Access Management features.
| Release |
Release notes |
Zurich |
No updates for this release. |
Australia |
- Early Availability
- Query ACLs
- Query ACLs now load automatically during plugin installation for most platform plugins. These preconfigured ACLs reduce the need to run the QueryRangeACLAuditor tool to generate query ACLs. Store app query ACLs aren't
included in preconfigured query ACLs. For more information about preconfigured query ACLs, see the Maintenance Information [KB2046494] article in the Now Support
Knowledge Base.
- Existing custom query ACLs are preserved and loaded as inactive. To view inactive ACLs, use this command:
<INSTANCE_URL>/sys_security_acl_list.do?[query_parameters]
- QueryRangeACLAuditor tool modifications are preserved.
- ACL rule types
- Core field and datatype ACLs are replaced with more comprehensive rules to optimize ACL volume.
- Access Analyzer
- Use ServiceNow® Access Analyzer v6.1, a tool designed for AI administrators or creators to validate the access controls configured within agentic assets (agentic workflows and AI agents) on the ServiceNow AI Platform.
Important: Access Analyzer is available in the ServiceNow Store. For more information, visit ServiceNow Store.
|
Removed
Between your current release family and Australia, some Access Management features or functionality were removed.
| Release |
Release notes |
Zurich |
No updates for this release. |
Australia |
No updates for this release. |
Deprecations
Between your current release family and Australia, some Access Management features or functionality were deprecated.
| Release |
Release notes |
Zurich |
No updates for this release. |
Australia |
No updates for this release. |
Activation information
Review information on how to activate Access Management.
| Release |
Release notes |
Zurich |
Access Management is a ServiceNow AI Platform feature that is active by default.
|
Australia |
Access Management is a ServiceNow AI Platform feature that is active by default.
|
Additional requirements
If any additional requirements were introduced or changed for Access Management we have noted them here.
| Release |
Release notes |
Zurich |
No updates for this release. |
Australia |
No updates for this release. |
Browser requirements
If any specific browser requirements were introduced or changed for Access Management we have noted them here.
| Release |
Release notes |
Zurich |
No updates for this release. |
Australia |
No updates for this release. |
Accessibility information
Review details on accessibility information for Access Management, such as specific requirements or compliance levels.
| Release |
Release notes |
Zurich |
No updates for this release. |
Australia |
No updates for this release. |
Localization information
If there are specific localization considerations for Access Management we have noted them here.
| Release |
Release notes |
Zurich |
No updates for this release. |
Australia |
No updates for this release. |
Highlight information
If there are specific highlight considerations for Access Management we have noted them here.
| Release |
Release notes |
Zurich |
- Enforce access to data via REST or SOAP endpoints using the Machine Identity Access Controls, which helps improve security, governance, and auditability.
- Target all table columns of a given data type with a single ACL using Datatype ACLs.
- Govern scripting permissions with the Scripting Governance tool, a new base system deny-by-default behavior.
See Access Control List Rules for more information.
|
Australia |
Early Availability
- Use ServiceNow® Access Analyzer v6.1, a self-service tool designed for AI administrators or creators to validate the access controls configured within agentic assets (agentic workflows and AI agents).
- Use new preconfigured query ACLs for most platform plugins, as part of ongoing security risk mitigation. These base system ACLs significantly reduce the need to run the QueryRangeACLAuditor tool.
-
Access Findings is the proactive detection and remediation layer within Access Management Console. It runs eight out-of-box access checks against your instance on a daily schedule, surfaces prioritized findings when
misconfigurations are detected, and provides a complete remediation workflow including AI-powered guidance.
See Access Control List Rules for more information.
|