What is a System Property?
A System Property in ServiceNow serves as a configuration setting, storing crucial information related to the system. These properties cover a broad range of details, including parameters for system behavior, performance, and security.
An example is the System Property glide.sm.default_mode, which controls the default behavior of the Security Manager, which regulates user access to data in ServiceNow.
Why is this an issue?
Users should only have the minimum level of access needed to perform their tasks, and access is explicitly granted rather than assuming open access unless restricted. The choice of value impacts data security significantly:
Deny Access: This offers robust data segregation, ensuring users only access authorized data. This is crucial for organizations with strict compliance requirements or sensitive information.
Allow Access: This provides easier access but is less secure. Confidential data might be accidentally accessed if specific restrictions are not set for each table.
How do I fix it?
To fix this issue, ServiceNow recommends setting glide.sm.default_mode to deny. To do so, follow these steps:
In the Filter Navigator, type and enter sys_properties.list.
Search for
glide.sm.default_mode.Set Value column to deny.