CSA Exam Questions Tutorials

In ServiceNow,Table Access Control (ACL) rulesdefine the permissions for accessing records within a table. When a user attempts to access a record, ServiceNow processesACL rules in a specific orderto determine if the user has the necessary permissions.

Specific Table Name ACLs

ServiceNowfirst checks ACL rulesthat are defined for the exact table being accessed.

If there are multiple ACL rules for the same table, ServiceNow evaluates themfrom most specific to least specific(i.e., field-level ACLs before table-level ACLs).

Parent Table Name ACLs(If applicable)

If the table inherits from another table (e.g.,Incident inherits from Task), ServiceNownext checks ACL ruleson theparent table.

This ensures that inherited rules are properly applied.

Wildcard ACLs (*)(Any table)

If no explicit ACL rule is found for the table or its parent, ServiceNow checkswildcard ACL rules (*), which apply toall tables.

Wildcard ACLs act as alast resortwhen no table-specific rules exist.

Order of Processing ACL Rules:

(A) any table name (wildcard), parent table name, table name – Incorrect

Wildcard rules (*) areprocessed last, not first.

(B) table name, parent table name, any table name (wildcard) – Correct

This follows the correctprocessing order:

First:ACLs for the specific table

Second:ACLs for the parent table (if applicable)

Third:Wildcard ACLs (*)

(C) parent table name, table name, any table name (wildcard) – Incorrect

Parent table ACLs arechecked aftertable-specific ACLs, not before.

(D) any table name (wildcard), table name, parent table name – Incorrect

Wildcard ACLs (*) arealways processed last, so this order is incorrect.

Explanation of Each Option:

Field-level ACLs(column-specific) take precedence overtable-level ACLs.

If multiple ACL rules apply,all must evaluate totruefor access to be granted.

Explicit Deny:If an ACL rule explicitlydenies access, the user is denied, even if another ACL grants access.

Always Test ACLs:Use the "Security Debugging" feature (/sys_security_acl_list.do) to verify how ACLs are applied.

Additional Notes & Best Practices:

ServiceNow Docs: How Access Control Rules Work

ServiceNow Community: Understanding ACL Processing Order

References from Certified System Administrator (CSA) Documentation:

InServiceNow,Rolesare used to control access toApplications and Moduleswithin the platform. ARoleis a set of permissions that define what actions a user can perform and which records they can access.

Grant Access to Applications and Modules:

If a userdoes not have the required role, theycannot see or accessan application/module.

Control Record-Level and Field-Level Access:

SomeAccess Control Rules (ACLs)depend on roles topermit or restrictdata visibility.

Assign Multiple Roles to a User:

A user can havemultiple rolesbased on job responsibilities.

Example Roles in ServiceNow:

admin– Full access to all system features.

itil– Can manage incidents, problems, and changes.

catalog_admin– Manages the Service Catalog.

asset– Manages assets and CI records.

Key Functions of Roles in Access Control:

Navigate to:All → Users and Groups → Users

Open a user record

Scroll to the Roles related list

Click Edit and add roles

How to Assign Roles to Users:

A. Access Control Rules– Incorrect.

Access Control Rules (ACLs)definerecord-level and field-levelsecurity, but they donot control access to applications and modulesdirectly.

B. UI Policies– Incorrect.

UI Policiescontrol the visibility and behavior of form fields,not module or application access.

D. Assignment Rules– Incorrect.

Assignment Rulesautomatically assigntasks(e.g., Incidents, Requests) to groups or users, but theydo not control access.

Explanation of Incorrect Answers:

ServiceNow Product Documentation → Roles and Permissions

ServiceNow CSA Study Guide → User and Role Management

ServiceNow Knowledge Base → Controlling Access to Applications and Modules

References from Certified System Administrator (CSA) Documentation:

In ServiceNow,Favoritesallow users to quickly accessapplication menus and modulesthat they frequently use. By marking an application menu or module as a favorite, it appears under theFavorites tab in the Application Navigator, making navigation faster and more efficient.

(A) Breadcrumb – Incorrect

Breadcrumbs in ServiceNow show thenavigation pathwithin a list view or form.

They help users filter data quickly but donotstore shortcuts for quick access.

(B) Favorite – Correct

TheFavorite featurein ServiceNow allows users to save frequently used menus and modules for quick access.

Users canadd, remove, and reorderfavorites for better personalization.

Located in theApplication Navigator, favorites appear at the top for easy access.

Favorites can include forms, records, reports, or dashboards.

(C) Tag – Incorrect

Tagsare used toorganize and categorize records(e.g., incidents, problems, change requests).

Tags help users group related records but donotcreate direct menu shortcuts.

(D) Bookmark – Incorrect

ServiceNow doesnotuse the term "Bookmark" for quick access to menus and modules.

While users can bookmark URLs in a web browser, this is different from ServiceNow’s built-inFavoritesfeature.

Explanation of Each Option:

Users cancustomize Favoritesby renaming them or selecting an icon for better visibility.

Admins canpre-configure favoritesfor users based on roles to improve productivity.

Favorites improveuser efficiencyby reducing the number of clicks needed to reach frequently used items.

ServiceNow Docs: Using Favorites in the Application Navigator

ServiceNow Community: Personalizing the Application Navigator with Favorites

Additional Notes & Best Practices:References from Certified System Administrator (CSA) Documentation:

In ServiceNow,Tables & Columnsis the module that allows administrators to view and managefield settingsfor a table. This module provides a list of tables in the system along with details about theircolumns (fields), data types, and attributes.

Displaysall fields (columns)within a selected table.

Showsdata types, attributes, and configurationsof each field.

Allows admins toadd, modify, or removefields.

Provides details onrelationships between tables(e.g., reference fields, one-to-many relationships).

Navigate to:System Definition > Tables & Columns

Select a table to view itsfield settings.

B. Access Control – Incorrect

This module managessecurity rules (ACLs)for accessing records but does not display table field settings.

C. Columns and Fields – Incorrect

No such module exists in ServiceNow.

D. Tables and Fields – Incorrect

The correct module name is"Tables & Columns", not "Tables and Fields".

ServiceNow Docs: System Definition – Tables & Columns

ServiceNow CSA Study Guide – Table Administration

ServiceNow Product Documentation: Managing Fields in a Table

Key Features of the "Tables & Columns" Module:How to Access Tables & Columns in ServiceNow:Explanation of Incorrect Options:References from Certified System Administrator (CSA) Documentation: