Welcome to Scribd!

The Complete Servicenow System Administrator Course: Section 6 - User Administration

Uploaded by

0% found this document useful (0 votes)

12 views19 pages

This document provides an outline for a ServiceNow system administrator course section on user administration. The section covers topics like users, groups, roles, access controls, LDAP, SSO, and impersonation. It defines things like users having a ServiceNow account and record in the sys_user table. Roles grant permissions and contain access control rules. Access controls flow by checking if a user has a required role and evaluating rule permissions. LDAP defines the structure for directory services. SSO provides single sign-on authentication through a third party. And impersonation allows testing access controls by impersonating other users.

Original Description:

Original Title

Section+6

Copyright

Available Formats

PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Report this Document

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

Download as pdf or txt

0% found this document useful (0 votes)

12 views19 pages

The Complete Servicenow System Administrator Course: Section 6 - User Administration

Uploaded by

yusuf

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

Download as pdf or txt

Jump to Page

You are on page 1of 19

Search inside document

The Complete ServiceNow

System Administrator Course

Section 6 - User Administration
Course Outline
1 Course Introduction 6 User Administration

2 ServiceNow Overview 7 Core Applications

3 Lists, Forms, & the UI 8 System Administration

4 Customizations 9 Building A Custom App

5 Tables & Fields 10

Section Outline
1 Users 6 Access Control Execution

2 Groups 7 LDAP

3 Roles 8 SSO

4 Access Controls 9 Impersonation

5 Access Operations 10
• A ServiceNow account
• A record in the sys_user table
• Users may be apart of 0 or more groups
• Users may have 0 or more roles
• Users may also be assigned delegates

Users
• A record in the sys_user_group table
• Buckets which hold users who share a
common purpose/role
• Roles are assigned to groups
• Groups contain 0 or more roles
• May inherit other groups
Groups
Users & Groups
Demo
• Grants permissions to parts of the system
• A record in the sys_user_role table
• Assign roles to a group
• Contain access control rules
• Many out-of-box roles

Administrator group

Roles
Admin role

User
Popular Out-of-Box Roles
• admin
• security_admin
• itil
• itil_admin
• impersonator
• knowledge_admin
• report_admin
• catalog_admin
• asset
• ecmdb_admin
• A record in the sys_security_acl table
• Used to grant access
• Specifies
• Object and operations
• Permissions required

• * wildcard
Access Controls • Thousands of out-of-box access controls
Tying It All Together
• Access controls are assigned to roles
• Roles are assigned to groups
• Users are assigned to groups

Network Group
Write access

ITIL role

Network role Anand Steve Lee

Delete
access
Access Operations
Operation Action

execute Run app or script

create Insert records

read Display records

write Update records

delete Remove records

list_edit Update records from list view

report_on Create reports

Access Controls Flowchart
Deny access to
No object
Does user have
one of the required
roles?
Yes

Yes
Fail
User makes Does ACL for
request for record matched object exist?
Evaluate conditions
No
Pass

Grant access to
object
Access Control Execution
Deny access to
Fail object
Evaluate rule
Does field rule match: permissions

1) table.field Pass
Rule
2) parent table.field
found
3) *.field Rule
User makes Grant access to
request for record found object
4) table.*

5) parent table.* No Does table rule match:

rule
6) *.* 1) table No
rule
2) parent table

3) *
Roles & ACLs
Demo
LDAP
• Lightweight Directory Access Protocol
• Industry standard for directory services
• Active Directory
• Defines structure for users & groups
• 2 parts
• Authentication
• Data population

Is user account u0392 active?

ServiceNow Company LDAP

Yes
Single Sign-On (SSO)
• Used for authentication
• 3rd party (provider)
• Single account for all system access
• SSO provider communicates with ServiceNow
• Example: Okta, Facebook

Browser

ServiceNow SSO Provider

Impersonation
• Used for testing access controls
• Only users with the admin or impersonator role can
impersonate users
• It’s as if that user is currently logged in
LDAP, SSO, &
Impersonation
Demo
Demo

II. Arbor Networks SP System Administrator Training Book
Document257 pages
II. Arbor Networks SP System Administrator Training Book
Eduardo caboclo
67% (3)
CCIE Data Center Lab
Document11 pages
CCIE Data Center Lab
Richard Pham
No ratings yet
(M8S2-POWERPOINT) - Data Control Language (DCL)
Document24 pages
(M8S2-POWERPOINT) - Data Control Language (DCL)
Yael Cabrales
No ratings yet
Ch3 Profiles, Password Policies, Privileges, and Roles
Document79 pages
Ch3 Profiles, Password Policies, Privileges, and Roles
ahlam alzhrani
No ratings yet
Oracle Database Security Interview Questions, Answers, and Explanations: Oracle Database Security Certification Review
From Everand
Oracle Database Security Interview Questions, Answers, and Explanations: Oracle Database Security Certification Review
Equity Press
No ratings yet
Past Exam Paper With Answers
Document5 pages
Past Exam Paper With Answers
Anonymous lcQ0saI
100% (2)
Unit Ii Telemedical Technology 9: Multimedia-Text, Audio, Video, Data
Document48 pages
Unit Ii Telemedical Technology 9: Multimedia-Text, Audio, Video, Data
Sumathy Jayaram
83% (6)
06-CH04-CompSec2e-ver04 Access Control PDF
Document34 pages
06-CH04-CompSec2e-ver04 Access Control PDF
Nikunj Patel
No ratings yet
CH04 CompSec3eST
Document30 pages
CH04 CompSec3eST
Samer Samara
No ratings yet
CH04 CompSec4e
Document48 pages
CH04 CompSec4e
Abd Ismail
No ratings yet
CH04 CompSec4e
Document48 pages
CH04 CompSec4e
Kofi Boateng
No ratings yet
Querying and Reporting Data
Document27 pages
Querying and Reporting Data
Portelly Jdr
No ratings yet
Lecture4 AccessControl
Document13 pages
Lecture4 AccessControl
makangara22
No ratings yet
Lecture 7 Access Control
Document22 pages
Lecture 7 Access Control
phonemyatpaing950
No ratings yet
Lecture4 AccessControl
Document13 pages
Lecture4 AccessControl
makangara22
No ratings yet
UNIX Extended Access Control List
Document50 pages
UNIX Extended Access Control List
Ahmad Alhamed
No ratings yet
UNIX Extended Access Control List
Document50 pages
UNIX Extended Access Control List
Ahmad Alhamed
No ratings yet
CH 04
Document41 pages
CH 04
Darwin Vargas
No ratings yet
Module-4.2 0
Document15 pages
Module-4.2 0
Harpreet Singh
No ratings yet
Information Security: Access Control
Document11 pages
Information Security: Access Control
Tehmoor Amjad
No ratings yet
Administrative Features in Orchestrator's Web Interface
Document10 pages
Administrative Features in Orchestrator's Web Interface
Raghvendra Sharma
No ratings yet
11 - Database and Cloud Security
Document39 pages
11 - Database and Cloud Security
ikonarmy4
No ratings yet
Module5 Protection
Document24 pages
Module5 Protection
Geetha Shyamsundar
No ratings yet
16.access Control in Snowflake
Document14 pages
16.access Control in Snowflake
clouditlab9
No ratings yet
IBM Rational ClearQuest Administration
Document40 pages
IBM Rational ClearQuest Administration
mnreddy
No ratings yet
Access Matrix: Implementation and Comparison
Document19 pages
Access Matrix: Implementation and Comparison
Hamzah Hamizan
No ratings yet
Security Computing-5-Access-Control
Document32 pages
Security Computing-5-Access-Control
mqarwa2
No ratings yet
Computer Security: Principles and Practice: Chapter 4: Access Control
Document41 pages
Computer Security: Principles and Practice: Chapter 4: Access Control
Harihara Gopalan S
No ratings yet
03-53 Users and Groups
Document45 pages
03-53 Users and Groups
Ruben Vergara
No ratings yet
ch03 AC
Document26 pages
ch03 AC
Nam Nguyen
No ratings yet
System Testing Annotated
Document56 pages
System Testing Annotated
Katende Chris
No ratings yet
Using Access Control Rules
Document12 pages
Using Access Control Rules
Suresh Thallapelli
No ratings yet
Controlling User Access
Document20 pages
Controlling User Access
Karim Shaik
No ratings yet
Complying With Data Handling Requirements in Cloud Storage Systems
Document20 pages
Complying With Data Handling Requirements in Cloud Storage Systems
CSE5 17-21
No ratings yet
Sessions 2
Document82 pages
Sessions 2
Murali Jillellamudi
No ratings yet
OOP Introduction
Document46 pages
OOP Introduction
Haider Ali
No ratings yet
Access Control
Document34 pages
Access Control
OMAR QARKASH
No ratings yet
Identity and Access Management: Level 200
Document37 pages
Identity and Access Management: Level 200
Harish Naik
No ratings yet
Advanced Computer Networks & Computer and Network Security: Prof. Dr. Hasan Hüseyin BALIK (4 Week)
Document36 pages
Advanced Computer Networks & Computer and Network Security: Prof. Dr. Hasan Hüseyin BALIK (4 Week)
mustafa albayati
No ratings yet
Unit 4 Requirement Analysis and Specification
Document14 pages
Unit 4 Requirement Analysis and Specification
honey yorac
No ratings yet
01 Day-02-Bonus-Identity_Access_Management_100
Document21 pages
01 Day-02-Bonus-Identity_Access_Management_100
Relja Racki
No ratings yet
Ch3 Profiles, Password Policies, Privileges, and Roles
Document79 pages
Ch3 Profiles, Password Policies, Privileges, and Roles
ahlam alzhrani
No ratings yet
4 Week
Document36 pages
4 Week
Abdulaziz Tutor
No ratings yet
Les 01
Document20 pages
Les 01
Mac Millan
No ratings yet
Unit 4 - CS
Document32 pages
Unit 4 - CS
yuydokosta
No ratings yet
Less08 Users PDF
Document26 pages
Less08 Users PDF
luisa
No ratings yet
Administering Users For Security Purposes: User and Roles
Document10 pages
Administering Users For Security Purposes: User and Roles
jane jabar
No ratings yet
OCI_IAM Service
Document19 pages
OCI_IAM Service
aqsaad1228
No ratings yet
Les03 AdministeringPresentationCatalog
Document26 pages
Les03 AdministeringPresentationCatalog
Võ Lê Quy Nhơn
No ratings yet
CUCM Cli Reference Guide
Document106 pages
CUCM Cli Reference Guide
Guillermo Erik Becerra
No ratings yet
Identity Access Management 100
Document33 pages
Identity Access Management 100
Ramon Alvarez
No ratings yet
Module 14-3 - Roles
Document15 pages
Module 14-3 - Roles
Gautam Trivedi
No ratings yet
Topiwise Interviewquestions1
Document37 pages
Topiwise Interviewquestions1
satyanarayana chitikala appala venkata
No ratings yet
Onikpelafiya Presentation Windowsactivedirectoryvslinuxdirectoryservices
Document19 pages
Onikpelafiya Presentation Windowsactivedirectoryvslinuxdirectoryservices
Abdulrahman Redwan
No ratings yet
Use Case Template
Document12 pages
Use Case Template
Sanika Divekar
No ratings yet
OBJECT Oriented Properties Oriented Access Elements: Mapping
Document1 page
OBJECT Oriented Properties Oriented Access Elements: Mapping
Bianca Mihaela Constantin
No ratings yet
7.1.database Vault OView
Document18 pages
7.1.database Vault OView
hanisami666
No ratings yet
03d - Access Control and Authorization
Document11 pages
03d - Access Control and Authorization
Syarifah Ayuwandira
No ratings yet
Authentication and Authorization in PHP: Access Control Lists
Document31 pages
Authentication and Authorization in PHP: Access Control Lists
marcelo.cunha.ti3163
No ratings yet
Users: Main Points in This Section
Document8 pages
Users: Main Points in This Section
yakubpasha.mohd
No ratings yet
Users: Main Points in This Section
Document8 pages
Users: Main Points in This Section
Thirumal Reddy
No ratings yet
Error: Reference Source Not Found: Third Year Information Technology
Document15 pages
Error: Reference Source Not Found: Third Year Information Technology
Sanika Divekar
No ratings yet
Database Vault
Document18 pages
Database Vault
anshul
No ratings yet
Mastering JIRA 7 - Second Edition
From Everand
Mastering JIRA 7 - Second Edition
Ravi Sagar
No ratings yet
The Complete Servicenow System Administrator Course: Section 4 - Customizations
Document31 pages
The Complete Servicenow System Administrator Course: Section 4 - Customizations
yusuf
No ratings yet
The Complete Servicenow System Administrator Course: Section 5 - Tables & Fields
Document23 pages
The Complete Servicenow System Administrator Course: Section 5 - Tables & Fields
yusuf
No ratings yet
The Complete Servicenow System Administrator Course: Section 7 - Core Applications
Document36 pages
The Complete Servicenow System Administrator Course: Section 7 - Core Applications
yusuf
No ratings yet
(To Be) : Put in The Verbs in Brackets in The Correct Tenses
Document8 pages
(To Be) : Put in The Verbs in Brackets in The Correct Tenses
yusuf
No ratings yet
Control File Oracle
Document4 pages
Control File Oracle
yusuf
No ratings yet
SQ L Group by Claushie
Document1 page
SQ L Group by Claushie
yusuf
No ratings yet
GNB Interactions: 5G Standalone Access Registration: 1:Msg1: Preamble
Document4 pages
GNB Interactions: 5G Standalone Access Registration: 1:Msg1: Preamble
anujgujjar
No ratings yet
Cyber JIF Framework Supporting Information
Document2 pages
Cyber JIF Framework Supporting Information
Giorgos Michaelides
No ratings yet
Checkpoint Actualtests 156-315 80 v2020-01-04 by Sherman 179q
Document77 pages
Checkpoint Actualtests 156-315 80 v2020-01-04 by Sherman 179q
delta craiova
No ratings yet
DS-2CD3643G1-IZUHK 4 MP IR Varifocal Bullet Network Camera: Key Features
Document4 pages
DS-2CD3643G1-IZUHK 4 MP IR Varifocal Bullet Network Camera: Key Features
fedia nouma
No ratings yet
Reto 4
Document5 pages
Reto 4
pgn_pedroguillen
No ratings yet
DOCSIS CMTS Headend Z-CMTS
Document1 page
DOCSIS CMTS Headend Z-CMTS
sorin rotaru
No ratings yet
Sangfor IAM User Manual
Document914 pages
Sangfor IAM User Manual
muhammad -
No ratings yet
EMC Networker - Setting Up QoreStor As A CIFS, NFS Target On Dell EMC Networker
Document36 pages
EMC Networker - Setting Up QoreStor As A CIFS, NFS Target On Dell EMC Networker
Aziz Bezzaf
No ratings yet
Daily Reports Postilion: Alarms - A05W063
Document7 pages
Daily Reports Postilion: Alarms - A05W063
dbvruthwiz
No ratings yet
Coc2 Set-Up Computer Networks
Document8 pages
Coc2 Set-Up Computer Networks
Dus Tin
No ratings yet
10 Mark: Important Questions DCN
Document12 pages
10 Mark: Important Questions DCN
Sumi
No ratings yet
IIUM Wireless Registration and Configuration
Document56 pages
IIUM Wireless Registration and Configuration
Encik Ahmad
No ratings yet
Computer Security
Document8 pages
Computer Security
Trixia Mortiz
No ratings yet
Ransomeware Attack in Cyber Security:A Case Study: Ntroduction
Document4 pages
Ransomeware Attack in Cyber Security:A Case Study: Ntroduction
babaji
No ratings yet
Iot Configuration
Document12 pages
Iot Configuration
Technos_Inc
No ratings yet
Anpr Mobile Tattile
Document1 page
Anpr Mobile Tattile
cristian roberto godoy c
No ratings yet
CND Exam Blueprint v2.0: EC-Council
Document6 pages
CND Exam Blueprint v2.0: EC-Council
Aditya Adi
No ratings yet
Final Term Seqs Dccn-w2021
Document2 pages
Final Term Seqs Dccn-w2021
shoaibakbar516
No ratings yet
USR-GPRS232-730 Guide Line
Document18 pages
USR-GPRS232-730 Guide Line
Kutu Buku
No ratings yet
GC 2024 04 09
Document9 pages
GC 2024 04 09
quentasillally
No ratings yet
ABB NEBRX RB 1KHW002026
Document84 pages
ABB NEBRX RB 1KHW002026
Juan Ruiz
No ratings yet
HiPath 4000 V5, Data Sheet, Issue 2
Document8 pages
HiPath 4000 V5, Data Sheet, Issue 2
Leon Pinto
No ratings yet
Basic ASA NAT Configuration - Web Server in The DMZ in ASA Version 8.3 and Later - Cisco
Document13 pages
Basic ASA NAT Configuration - Web Server in The DMZ in ASA Version 8.3 and Later - Cisco
Khan
No ratings yet
Collection of HUAWEI Server Brochures
Document20 pages
Collection of HUAWEI Server Brochures
Johanz Roque
No ratings yet
E-Health Wireless IDS With SIEM Integration: April 2018
Document3 pages
E-Health Wireless IDS With SIEM Integration: April 2018
E.G
No ratings yet
CCNP CCIE 350 401 ITExam 23 July 2022
Document119 pages
CCNP CCIE 350 401 ITExam 23 July 2022
Malik Amari
No ratings yet