What are the 6 methods available for user authentication?
Local Database: The user name and password in their user record in the instance database.
Multifactor: The user name and password in the database and passcode sent to the user's mobile device that has Google Authenticator installed
LDAP: The user name and password are accessed via LDAP in the corporate directory, which has a matching user account in the database.
SAML 2.0: The user name and password configured in a SAML identity provider account, which has a matching user account in the database.
OAuth 2.0: The user name and password of OAuth identity provider, which has a matching user account in the database.
Digest Token: An encrypted digest of the user name and password in the user record.
Thesix methods available for user authenticationin ServiceNow are:
Local Database– The user authenticates using a username and password stored in theinstance database.
Multifactor Authentication (MFA)– The user provides their username, password, and apasscode(e.g., from Google Authenticator).
LDAP (Lightweight Directory Access Protocol)– The user authenticates using credentials stored in a corporateLDAP directory.
SAML 2.0 (Security Assertion Markup Language)– The user is authenticated via an externalSAML Identity Provider (IdP).
OAuth 2.0– The user authenticates via anOAuth identity provider(such as Google, Microsoft, or Facebook).
Digest Token Authentication– The user authenticates using anencrypted tokenrather than directly submitting a password.
Thus, the correct answer is:
A, B, C, D, E, F
ServiceNow supports multiple authentication methods to provideflexibility, security, and integration capabilitieswith external identity providers.
Local Database Authentication:
ServiceNow storesusernames and passwordsin the internal database.
Users authenticate directly with the instance.
This method is commonly used when no external authentication provider is configured.
Multifactor Authentication (MFA):
Enhances security by requiringtwo authentication factors:
Username and password(stored in the database).
Passcodefrom a registered device (such as Google Authenticator, Microsoft Authenticator).
MFA helpsprevent unauthorized accesseven if credentials are compromised.
LDAP Authentication:
Allows users toauthenticate against an external LDAP directory(such as Microsoft Active Directory).
The user must have amatching record in the ServiceNow user table ([sys_user]).
ServiceNowdoes not store passwordswhen using LDAP; it only validates credentials against the directory.
SAML 2.0 Authentication:
Users authenticate via aSAML Identity Provider (IdP)such asOkta, Microsoft Azure AD, or Ping Identity.
ServiceNow acts as aService Provider (SP)and does not store passwords.
ProvidesSingle Sign-On (SSO)capabilities.
OAuth 2.0 Authentication:
Allows authentication viaOAuth providers(Google, Facebook, Microsoft, etc.).
Users do not need to store passwords in ServiceNow; instead, authentication is delegated to theOAuth identity provider.
Digest Token Authentication:
Uses anencrypted token(instead of a plaintext password) to authenticate users.
Often used forAPI-based authenticationor scenarios where passwords should not be transmitted over the network.
Each method aligns with ServiceNow's authentication mechanisms as per official documentation.
ServiceNow supports a hybrid authentication approach, allowing multiple methods to coexist.
ServiceNow Docs – Authentication Methodshttps://docs.servicenow.com
ServiceNow Security Best Practices – Authentication & Access Controls
ServiceNow Developer Portal – SSO & OAuth Authentication
Why These Are the Correct Methods?References from Certified System Administrator (CSA) Documentation:
What is the name of the conversational bot platform that provides assistance to help users obtain information, make decisions, and perform common tasks?
Answer Agent
live Feed
Virtual Agent
Connect Chat
Theconversational bot platforminServiceNowthat helps usersobtain information, make decisions, and perform common tasksis calledVirtual Agent.
What is Virtual Agent?Virtual Agent is achatbot frameworkin ServiceNow that allows users to interact with the system usingnatural language processing (NLP). It automates responses, guides users through processes, and integrates with ServiceNow workflows to resolve requests efficiently.
Conversational AI & Automation
Uses AI andNatural Language Understanding (NLU)to interpret user input and provide relevant responses.
Predefined Topics & Custom Topics
Comes with pre-built conversation topics (e.g., resetting passwords, requesting IT help) and allows organizations to create custom topics.
Multi-Channel Support
Works with platforms likeMicrosoft Teams, Slack, ServiceNow Chat, and web portals.
Self-Service Capabilities
Enables users to resolve issueswithoutcontacting the Service Desk, improving efficiency.
Integration with ServiceNow Workflows
Can trigger workflows tocreate incidents, update records, retrieve knowledge articles, or complete approvals.
A. Answer Agent
Incorrect: There is no feature named "Answer Agent" in ServiceNow.
B. Live Feed
Incorrect:Live Feedis a social collaboration tool in ServiceNow that allows users to post updates and interact with others, similar to a message board. It does not provide AI-based conversational assistance.
D. Connect Chat
Incorrect:Connect Chatis ServiceNow’s real-timecollaborative chat system, used for direct communication between users and support agents, but it isnot an AI-driven Virtual Agent.
Key Features of Virtual Agent:Why Other Options Are Incorrect?
ServiceNow Product Documentation - Virtual Agent
Virtual Agent Overview
Setting Up Virtual Agent
ServiceNow Conversational Interfaces
Virtual Agent vs. Connect Chat
References from ServiceNow CSA Documentation:
What are the two pathways to view feedback left on a published article?
Knowledge > articles > My Flagged
Knowledge base > my knowledge > flagged articles
Knowledge > My articles > Flagged
Knowledge > articles > published
InServiceNow Knowledge Management, users can providefeedbackonpublished knowledge articlesby flagging them. This feedback helpsknowledge managers and authorsidentify errors, outdated information, or areas for improvement.
Toview feedback left on a published article, there are two primary pathways:
Pathway 1: Knowledge Base > My Knowledge > Flagged Articles
This option allowsknowledge managers and authorsto see all flagged articlesthey have authored or have access towithin a specificKnowledge Base.
Location:Knowledge Base → My Knowledge → Flagged Articles
Pathway 2: Knowledge > My Articles > Flagged
This option lets authorsview only their own articlesthat have been flagged.
Location:Knowledge → My Articles → Flagged
A. Knowledge > Articles > My Flagged
There isno direct "My Flagged" optionunderKnowledge > Articles.
D. Knowledge > Articles > Published
This showsall published articlesbut doesnot specifically show flagged (feedback) articles.
Navigate toKnowledge > My Articles > Flagged.
OR navigate toKnowledge Base > My Knowledge > Flagged Articles.
Open a flagged article to review thefeedback comments and reason for the flagging.
ServiceNow Docs: Managing Knowledge Feedback and Flagged Articleshttps://docs.servicenow.com/en-US/bundle/utah-it-service-management/page/product/knowledge-management/task/review-article-feedback.html
ServiceNow CSA Official Training Guide (Knowledge Management & Feedback Handling)
Why the Other Options Are Incorrect?How to View Feedback in ServiceNow?References from Certified System Administrator (CSA) Documentation:This confirms that the correct pathways to view feedback on published articles are"Knowledge Base > My Knowledge > Flagged Articles"and"Knowledge > My Articles > Flagged".
ServiceNow is a single-instance, multiple tenant architecture?
True
False
ServiceNow follows asingle-instance, single-tenant architecture,nota multiple-tenant architecture. This means:
Single-Instance:
Each ServiceNow instance is aunique, independent environmentfor a customer.
All customers have their own dedicated instance with their owncustom configurations, data, workflows, and applications.
ServiceNow instances are hosted in amulti-instance cloud modelrather than a multi-tenant model.
Single-Tenant Model (Multi-Instance Architecture):
Unlikemulti-tenant architectures(where multiple customers share the same application and database), ServiceNow provideseach customer with a separate, isolated instance.
Thisensures data security, performance isolation, and customization flexibility.
Each instance has its owndata storage, configuration, and upgrade schedule, reducing risks associated with shared environments.
Why ServiceNow Uses Multi-Instance Instead of Multi-Tenant:
Security & Data Isolation:Since each customer has an independent instance, there isno risk of data leakagebetween tenants.
Customization & Flexibility:Customers cancustomizetheir instance freely without affecting others.
Performance & Scalability:Each instance can bescaled independently, ensuring optimal performance.
ServiceNow does NOT use a multiple-tenant architecture.
ServiceNow follows a single-instance, single-tenant (multi-instance) model.
Each customer has a dedicated instance with isolated resources and configurations.
A multi-tenant architecturemeans multiple customerssharethe same application/database with logical separation, which is NOT the case in ServiceNow.
ServiceNow instead provides separate instancesfor each customer, meaning it isnota true multi-tenant system.
ServiceNow Product Documentation – Multi-Instance Cloud Modelhttps://docs.servicenow.com
ServiceNow Community – Single-Tenant vs. Multi-Tenant Explained
ServiceNow Best Practices – Security & Instance Architecture
Why Option B (False) Is Correct?Why Option A (True) Is Incorrect?References from Certified System Administrator (CSA) Documentation:
Which of the following statement describes the purpose of an Order Guide?
Order Guides restrict the number of items in an order to only one item per request
Order Guide provide a list of guidelines for Administrators on how to set up item variables
Order Guide provide the ability to order multiple, related items as one request
Order Guides take the user directly to the checkout without prompting for information
InServiceNow Service Catalog, anOrder Guideis a feature that allows users toorder multiple, related catalog items in a single request, simplifying the ordering process.
Helps usersrequest multiple items togetherinstead of submitting separate requests.
Ensures that related items are grouped logically (e.g., when onboarding a new employee, an Order Guide can include a laptop, software licenses, and access to required applications).
Usesvariables and rulesto pre-fill certain values and guide users through the ordering process.
Reduces the number of individual requests and makes fulfillment more efficient.
Purpose of an Order Guide:
(A) Order Guides restrict the number of items in an order to only one item per request – Incorrect
This isnot truebecause Order Guides allow users to requestmultiple itemsat once.
Asingle request (REQ#) is generatedthat contains multiple Requested Items (RITMs).
(B) Order Guides provide a list of guidelines for Administrators on how to set up item variables – Incorrect
Order Guides are forusers, not just administrators.
Theydo not provide setup guidelines; instead, they simplify ordering for end-users.
(C) Order Guides provide the ability to order multiple, related items as one request – Correct
This is theprimary functionof an Order Guide.
Instead of placing separate orders for different catalog items, a user can add allrelateditems to asingle request.
Example:Employee Onboarding Order Guide
Laptop
Email account
VPN access
Software (e.g., Microsoft Office, Adobe Suite)
(D) Order Guides take the user directly to the checkout without prompting for information – Incorrect
Order Guidescan include user prompts(variables, conditions) before checkout.
Users may be asked for specific detailsbeforesubmitting the request (e.g., laptop specifications, software preferences).
Explanation of Each Option:
Use dynamic variables: Order Guides can ask questions that determine which items should be included in the request.
Improve user experience: Order Guides streamline ordering, ensuring users request all necessary items without forgetting anything.
Enhance fulfillment efficiency: Since multiple items are grouped in one request, IT and fulfillment teams can process them together, reducing delays.
Example Use Cases:
New Hire Onboarding(laptop, software, security badge, phone)
Office Setup Request(desk, chair, monitor, accessories)
Additional Notes & Best Practices:
ServiceNow Docs: Order Guides Overview
https://docs.servicenow.com
ServiceNow Community: How to Configure an Order Guide
https://community.servicenow.com
References from Certified System Administrator (CSA) Documentation:
Which term best describes something that is created, has worked performed upon it, and is eventually moved to a state of closed?
report
workflow
event
task
In ServiceNow, ataskis a record that represents work that needs to be completed. It follows a lifecycle where it is:
Created– A task is generated, either manually or automatically (e.g., an incident, change request, or problem record).
Worked Upon– Users perform necessary actions, update statuses, and progress the task towards resolution.
Closed– Once completed, the task reaches a closed state, indicating that no further action is needed.
Tasks in ServiceNow are derived from theTask [task]table.
Common task-based records includeIncidents, Change Requests, Problems, and Service Requests.
Tasks follow a defined workflow and state transitions (e.g., New → Work in Progress → Resolved → Closed).
Key Features of a Task:
A. Report:
A report is a visualization of data and does not follow a lifecycle involving work or closure.
B. Workflow:
A workflow definesprocess automationand the movement of tasks, but it is not something that gets "worked upon" directly like a task.
C. Event:
Events are system-generated triggers that notify or automate actions, but they do not have a structured lifecycle like a task.
Why Other Options Are Incorrect:
ServiceNow Documentation:Task Management in ServiceNow
CSA Exam Guide:Coverstask recordsas fundamental entities that go through a lifecycle.
Reference from CSA Documentation:Thus, the correct answer isD. Task.
Which one statement correctly describes Access Control rule evaluation?
Rules are evaluated using roles. The role with the most permissions evaluates the rules first
If more than one rule applies to a row, the older rule is evaluated first
If a row level rule and a field level rule exist, both rules must be true before an operation is allowed
Rules are evaluated from the general to the specific, so a table rule must be active to continue
InServiceNow,Access Control rules (ACLs)are used torestrict or grant accessto data. Each Access Control rule consists of:
Table-level (Row-Level) ACLs– Control access to the entire record (row).
Field-level ACLs– Control access to specific fields within a record.
Access Control rules are evaluated in a specific orderto determine whether a user has the necessary permissions to perform an action (Read, Write, Create, Delete, etc.).
If both a row-level and a field-level ACL exist for the same table, BOTH must evaluate to "true"before access is granted.
The system checks conditions, scripts, and roles defined in the ACLsto decide whether the user meets the access requirements.
Access Control Rule Evaluation Process:Why is Option C Correct?If both a row-level rule and a field-level rule exist, both must evaluate to "true" for a user to perform an action.
Row-Level ACLscheck if a user can access the record itself.
Field-Level ACLscheck if a user can access specific fields within that record.
If a user failseitherACL check, access is denied.
Why Are the Other Options Incorrect?A. "Rules are evaluated using roles. The role with the most permissions evaluates the rules first."
Access Control rulesare not evaluated based on roles with the most permissions.
Roles are just one factorin ACL evaluation, along with conditions and scripts.
B. "If more than one rule applies to a row, the older rule is evaluated first."
ServiceNow does not prioritize ACL rules based on their creation date.
Instead, ACLs follow a structured evaluation order (general-to-specific).
D. "Rules are evaluated from the general to the specific, so a table rule must be active to continue."
This is partially true but misleading.
ServiceNow evaluates ACLs fromspecific to general(Field → Table).
However,a table-level rule does NOT need to be activefor a field-level ACL to be evaluated.
Reference from Certified System Administrator (CSA) Documentation:????ServiceNow Docs – Access Control Rules (ACLs) Evaluation
????ServiceNow ACL Evaluation Documentation
"If a field-level rule and a row-level rule exist,both must evaluate to truefor the operation to be allowed."
Conclusion:The correct answer isC. If a row-level rule and a field-level rule exist, both rules must be true before an operation is allowed.
????Understanding ACL rule evaluation is critical for managing security in ServiceNow, ensuring that users have the appropriate access while maintaining data integrity.
What is a Record Producer?
A Record Producer is a type of Catalog Item that is used for Requests, not Services
A Record Producer creates user records
A Record Producer is a type of Catalog Item that provides easy ordering by bundling requests
A Record Producer is a type of a Catalog Item that allows users to create task-based records from the Service Catalog
ARecord ProducerinServiceNowis atype of Catalog Itemthat allows users to create records intables(such as Incidents, Change Requests, or HR Cases) from theService Catalog. It provides asimplified and user-friendly interfacefor users to submit structured data without needing direct access to the actual form or database tables.
Key Features of a Record Producer:✔Creates task-based recordsin the appropriate table (e.g.,incident,sc_task,problem).
✔Uses a simplified forminstead of the standard form view of a record.
✔Can trigger workflows and business ruleswhen submitted.
✔Maps user inputs to table fieldsviaVariable Mappings.
An employee wants toreport a broken laptopbut does not need to see the fullIncident form.
The IT team creates aRecord Producernamed "Report an IT Issue" in theService Catalog.
The Record Producercollects user input(e.g., issue description, urgency, contact information).
Upon submission, itcreates an Incident record (incidenttable)in ServiceNow.
Example Use Case:
Why the Correct Answer is D:D. A Record Producer is a type of a Catalog Item that allows users to create task-based records from the Service Catalog(Correct)
This is the most accurate description of aRecord Producer.
It allows users tocreate recordsin a specifiedtask table (Incident, Change, Request, etc.)through theService Catalog.
Why the Other Options Are Incorrect:A. A Record Producer is a type of Catalog Item that is used for Requests, not Services (Incorrect)
Record Producers are not limited to Requests.
They can create various types of records, including Incidents, Change Requests, and HR Cases.
B. A Record Producer creates user records (Incorrect)
A Record Producerdoes not create user records(users are managed in thesys_usertable).
Instead, itcreates task-based recordsin other tables likeincidentorsc_task.
C. A Record Producer is a type of Catalog Item that provides easy ordering by bundling requests (Incorrect)
Order Guides, not Record Producers, handlebundling multiple Catalog Items into a single request.
ARecord Producer creates a single recordin a defined table.
Comparison: Record Producer vs. Other Catalog ItemsFeature
Record Producer
Standard Catalog Item
Order Guide
Creates a record in a ServiceNow table
Yes
No
No
Used to order physical/digital goods
No
Yes
Yes
Can bundle multiple requests
No
No
Yes
Uses a form-based submission
Yes
Yes
Yes
Which are valid Service Now User Authentication Methods? (Choose three.)
XML feed
Local database
LDAP
SSO
FTP authentication
ServiceNow supports multiple authentication methods to verify user identities before granting access to an instance. The three valid authentication methods from the given options are:
Local Database Authentication
This is the default authentication method used in ServiceNow.
User credentials (username and password) are stored in the ServiceNow database.
Authentication is handled directly by ServiceNow without relying on external identity providers.
This is useful for small implementations or instances where external authentication is not required.
LDAP (Lightweight Directory Access Protocol)
LDAP allows ServiceNow to integrate withcorporate directory services, such as Microsoft Active Directory, to authenticate users.
Users authenticate using theircorporate credentials, reducing the need to maintain separate user accounts in ServiceNow.
ServiceNow connects to an LDAP server and verifies credentials without storing passwords in the ServiceNow database.
SSO (Single Sign-On)
Single Sign-On enables users to log into ServiceNow using an external identity provider (IdP).
ServiceNow supports various SSO protocols, including:
SAML 2.0 (Security Assertion Markup Language)
OAuth 2.0
OpenID Connect
Kerberos
This allows users to authenticate once and gain access to multiple applications, improving security and user experience.
A. XML feed–
XML feeds are used for data exchange,not authentication.
ServiceNow can consume XML feeds for integrations but does not use XML feeds to authenticate users.
E. FTP authentication–
FTP (File Transfer Protocol) is used for transferring files between systems and isnot a valid authentication methodin ServiceNow.
ServiceNow Docs: User Authentication Methodshttps://docs.servicenow.com/en-US/bundle/utah-platform-administration/page/administer/security/concept/user-authentication-methods.html
ServiceNow CSA Official Training Guide (User Authentication & Security)
Why the Other Options Are Incorrect?References from Certified System Administrator (CSA) Documentation:These references confirm thatLocal Database, LDAP, and SSOare valid authentication methods in ServiceNow.
When using the Load Data and Transform Map process, what is the Mapping Assist used for?
Mapping fields using the Import Log
Mapping fields using Transform History
Mapping fields using an SLA
Mapping fields using a Field Map
InServiceNow, theLoad Data and Transform Mapprocess is used toimport data from external sources(e.g., CSV, Excel, XML) into the ServiceNow platform. TheMapping Assisttool is a feature within this process that helps administrators visually map fields between thesource data(imported file) and thetarget tablein ServiceNow.
Load Data:
Data is imported from an external source (e.g., CSV file, Excel spreadsheet, XML data).
The imported data is temporarily stored in astaging table(Import Set Table).
Transform Map:
ATransform Mapdefines how fields in the import set should be mapped to the target table in ServiceNow.
It allows datatransformation, filtering, and scriptingduring the import process.
Mapping Assist:
Mapping Assistis avisual toolthat helps administrators easily map fields between the import set and the target table.
It provides adrag-and-drop interfaceto connect fields.
Helps preventerrors in field mapping, ensuring data integrity.
Understanding the Load Data and Transform Map Process
Why Answer "D" is Correct:✔️"Mapping fields using a Field Map."
TheField Mapis created in theTransform Mapto define how fields from the import set match fields in the target table.
Mapping Assistis used tovisually linkthese fields, making it easier to set up the transformation process.
Why the Other Answers Are Incorrect:A. "Mapping fields using the Import Log."
Incorrectbecause theImport Logtracks the progress of an import job but does not provide field mapping.
The Import Log is used fortroubleshooting errors, not for mapping fields.
B. "Mapping fields using Transform History."
IncorrectbecauseTransform Historytracks past transformations and changes made during imports, but it isnot used for mapping fields.
It is used forauditing and debugging transformations, not field mapping.
C. "Mapping fields using an SLA."
IncorrectbecauseSLAs (Service Level Agreements)are used for tracking and enforcing deadlines on tasks,not for data mapping.
SLAs have no role in theLoad Data and Transform Mapprocess.
ServiceNow CSA Study Guide – Import Sets & Data Transformation
ServiceNow Docs: Transform Maps & Field Mapping(ServiceNow Documentation)
ServiceNow Docs: Mapping Assist Feature
References from the Certified System Administrator (CSA) Documentation:
