Identity and Access Management
Use the tools in the Identity and Access Management (IAM) section verify that your data is only accessible to the users and processes that need it.
IAM consists of three tools you can use to manage access to the data on your instance.
- Machine Identity Management
- Machine identities are digital credentials such as certificates, keys, and tokens. Servers, applications, containers, and cloud services use these identities authenticate with each other. Use the Machine Identity Console to manage the machine identities used for integrations with ServiceNow.
- Access Analyzer
- Use the Analyze Access and Permissions console to view permissions for a selected user, role, group, or compare access between two users.
- Scripting Governance for default group
-
Use the Scripting Governance Tool to configure preferences for the Conditional Script Writer group. Users in this group are assigned the snc_required_script_writer_permission role, which allows users to access scripts and script-like fields across the platform.
With the settings on this console you can turn auto-assignment of this role on or off, as well manually assign users to the group. You can also see information on who is assigned, and scan your instance to find users who have scripted in a specific time frame.