Configure encrypted field configurations for fields or attachments

  • 릴리스 버전: Australia
  • 업데이트 날짜 2026년 03월 12일
  • 소요 시간: 4분

    • Create an encrypted field configuration to specify which fields are encrypted on a table, and whether that table's attachments are encrypted.

    시작하기 전에

    Role required: security_admin and sn_kmf.cryptographic_manager or sn_kmf.admin

    You must have a configured field encryption module with a ServiceNow or customer-supplied key. If you have not yet configured a module, see Configure Field Encryption modules.

    프로시저

    1. Ensure that you are in the same application scope as the table you want to encrypt.
    2. Navigate to All > System Security > Field Encryption > Field Encryption Experience > Modules.
    3. Select Create new.
    4. In the Encrypted Field Configuration form, fill in the fields as needed.
      Field Value
      Type Select either Column or Attachment
      주:
      Attachment encryption is only available with Field Encryption Enterprise.
      Table Select the table which will have it's fields or attachments encrypted.
      Column If you have chosen Column in the Type field, select the fields to be encrypted.
      주:
      If the field you want to encrypt is not available, it may not be a supported type. The supported field types are:
      • String (including Full UTF-8)
      • Date
      • Date/Time
      • URL
      • HTML
      • Journal
      • Translated
      • Email
      • Phone
      Active Whether the configuration is active.
      중요사항:

      When active, your instance is actively encrypting new data in the selected fields or attachments. Users will not have access to this data unless they have permission via an associated Module Access Policy. Do not check if the field is not yet ready to begin encrypting and enforcing Module Access Policies.

      To ensure historical data is encrypted after an Encrypted Field Configuration is active, you’ll need to run a Mass Encryption Job on the column. For details, see Schedule mass encryption, decryption, or rekeying jobs.
      Crypto Module The field encryption module use by this encrypted field configuration.
      Method

      Select Single Module to ensure all fields or attachments are encrypted by a single field encryption module.

      Select Multi Module to allow for different field encryption modules to be used for different rows within a column or different attachments. For details on multi-module configuration, see Configure multi-module encrypted field configurations.
      Algorithm Equality Preserving Displays whether Equality Preserving is enabled in the field encryption module selected in the Crypto Module field.
    5. Select Save.