30 terms

Servicenow System Administrator Review (FUJI) - Module 2


Terms in this set (...)

What is a User?
A User is one record stored in the User Table
Where can a user go to view their own profile?
Self Service>My Profile
How are Users Brought in?
Manually, LDAP, Single Sign on (SSO)
What is Lightweight Directory Access Protocol (LDAP)?
It's an application protocol for accessing and maintaining distributed directory information services over an IP Network. It is also used to automate administrative tasks such as user creation and role assignment.
What is meant by SSO?
Also known as external authentication, it's an integration that enables a user to log in once and gain access to the resources of multiple software systems without being prompted to log in again.
What is Employee Self Service (ESS)?
These users are pre-authenticated and do not have to enter a username and password again. The are directed to their ServiceNow instance.
What is Data Population?
Allows one to quickly and easily populate Servicenow with user records from an existing LDAP database.
What is Authentication mean?
Users can utilize the same credentials for the ServiceNow application that they use for other internal resources on a company domain.
ServiceNow can integrate with any solution that uses one of the following techniques:
-Unencrypted HTTP Header
-Digest Token Authentication
-SAML 1.1 Browser POST Profile
-SAML 2.0 Web Browser SSO Profile
-Stateless Open ID with signature verification
Define a Group?
One record stored in the Group Table. It is also a collection of users who share a common purpose.
What are some examples of Groups?
-Training Group
-Service Desk
-Chat Support
What is Assignment Lookup Rules?
Assigns incidents to users or groups based on Category, Sub Category, Location, or Configuration items.
The fields used to determine the assignment, when referring to Assignment Lookup Rules, can be amended using:
System Policy > Data Lookup Definitions
What is an Assignment?
Assigns tasks to users or groups based on conditions or scripts.
As a best practice, when applying task assignment:
Assign tasks to groups instead of users
What is a Role?
-A persona that is assigned to a group or a single user
-A collection of permissions used to grant access to applications and other parts of the system as well as assign security controls.
What is a System Administrator role?
Has all roles and access to all system features, functions, and data, regardless of security constraints.
Who can grant privileges to become a Specialized Administrator?
The System Administrator
What is the Specialized Administrator roles also referred to as?
Delegated Admins.
What is the role of a Fulfiller (ITIL)?
These users have clearly defined paths and workflows in the system and have one or more roles.
A Requester is also known as a what?
An end user or Employee Self Service (ESS)
What actions can Approvers perform?
All requester actions and view or modify requests directed to the approver.
What is a Delegate?
Another user in the instance designated to receive and interact with approvals and tasks assigned or sent to you.
What is a Role Delegation Plugin?
It is where an administrator can grant a user the right to delegate roles within a particular group.
What does a Role inherit?
All permissions of any other roles it includes.
What do all the Roles at the top of the hierarchy inherit?
The permissions of all of the roles below it.
If a new Role is created in the hierarchy, who is granted the Role?
The System Administrator is automatically granted the role.
It is best practice to NOT map roles directly to whom?
What is the preferred method of assigning roles to users?
Add users to groups that have been assigned the desired roles.
What governs access to applications and modules?