ServiceNow Incidents v3 Security Summary
Security Feature | v2.9.x | v3.0+ |
|---|---|---|
Credential encryption | Basic | Password2 at-rest encryption. |
Application scope | Global | Scoped ( |
Access control | Standard ServiceNow roles | 41 dedicated ACLs with role-based enforcement. |
Database operations | Standard GlideRecord | GlideRecordSecure (enforces ACLs in all code paths). |
Store certification | No | Yes (meets ServiceNow security and data handling standards). |
Audit logging | Limited | Full audit trail on configuration changes with version history. |
All credentials are stored using Password2 field types on the x_bip_panda_config table, encrypted at rest, and isolated from other applications on your ServiceNow instance. Credentials are never exposed in exports, logs, or client-side scripts.