Configure and upload your customer supplied key

  • Rversion finale: Australia
  • Mis à jour 12 mars 2026
  • 1 minute de lecture

    • You can use your own customer-supplied key instead of using the ServiceNow® system-generated keys.

    Avant de commencer

    Role required: security_admin  and sn_kmf.cryptographic_manager  or sn_kmf.admin

    If you’re NOT supplying your own keys, you don’t need to perform this procedure. To create a cryptographic module with ServiceNow® keys, go to Create a cryptographic module or Create cryptographic module for Field Encryption.

    Remarque :
    This procedure only applies to Field Encryption Enterprise functionality. See Activate Field Encryption for more information.
    Important :
    You can’t revoke a customer supplied key.

    Procédure

    1. Navigate to All > System Security > Field Encryption > Field Encryption Experience.
    2. Select View module details on the Field Encryption module.
    3. Select Encryption Keys and Select and Continue for the Bring-your-own Key option.
    4. Select Download wrapping key and Next.
    5. Follow the required online steps and select the I completed the online steps box followed by Done and continue to the next step.
    6. Upload the wrapped encryption key and the import token downloaded with the wrapped key, enter a name for the encryption key, and select Complete provisioning.

    Que faire ensuite

    Now that you have finished configuring your cryptographic module with your customer-supplied key, move on to Create a module access policy