Which one of the following statements best describes the purpose of an Update Set?
An Update Set allows administrators to group a series of changes into a named set and then move this set as a unit to other systems
By default, an Update Set includes customizations, Business Rules, and homepages
An Update Set is a group of customizations that is moved from Production to Development
By default, the changes included in an Update Set are visible only in the instance to which they are applied
AnUpdate Setin ServiceNow is a mechanism thattracks and packages customizations and configuration changesso they can be transferred between instances (e.g., fromDevelopmenttoTestorProduction).
It is primarily used ininstance migrationandchange management, ensuring that changes made in one environment can beapplied consistentlyin another.
Tracks Customizations– Records changes to system configurations, such as Business Rules, Client Scripts, UI Policies, and Workflows.
Facilitates Deployment– Enables controlled migration of changes from one ServiceNow instance to another.
Reduces Manual Effort– Instead of manually reconfiguring settings in different environments, administrators can package updates into asingle unit.
Version Control– Ensures that onlyintended changesare moved between instances.
Key Features of Update Sets:
Why the Correct Answer is A:A. An Update Set allows administrators to group a series of changes into a named set and then move this set as a unit to other systems(Correct)
This accurately describes the primary function of anUpdate Set.
Administratorsgroupmultiple changes into anUpdate Set, export it, and apply it to another instance.
Example Workflow:
Admin makes configuration changes(e.g., modifies a Business Rule, updates a Workflow).
Update Set captures those changesin a structured format.
The Update Set is exportedfrom the Development instance.
The Update Set is importedinto the Testing/Production instance and applied.
Why the Other Options Are Incorrect:B. By default, an Update Set includes customizations, Business Rules, and homepages(Incorrect)
Update Setsdo include customizations and Business Rules, but theydo notinclude homepages by default.
Dashboards and homepagesrequire a separate process usingsys_portal_page and sys_ui_page tables.
C. An Update Set is a group of customizations that is moved from Production to Development(Incorrect)
Update Sets are typically movedfrom Development to Test/Production, not the other way around.
Best practice is to make changes inDevelopment, test them inTest/UAT, and then deploy them toProduction.
D. By default, the changes included in an Update Set are visible only in the instance to which they are applied(Incorrect)
This is misleading becausean Update Set can be exported and applied to multiple instances.
Once an Update Set isimported and committed, its changes become active in that instance.
Best Practices for Using Update Sets:✔Always preview an Update Set before committing itto ensure it contains the correct changes.
✔Use Named Update Sets, not the default "Default Update Set," to track changes effectively.
✔Ensure all related changes are included(e.g., dependencies such as script includes and tables).
✔Test Update Sets in a sub-production instancebefore applying them inProduction.
Which one of the following statements describes a characteristic of role assignment?
Roles can contain other roles, when you are assigned a role, you inherit all the roles within that role
Users can click on the Personalize Role feature to try different roles
A role is granted to a user by the System Administrator
Each user has a role in the ServiceNow platform
InServiceNow Role Management, aroleis a collection ofpermissionsthat control what users can see and do within the platform.
Role Hierarchy (Role Inheritance)
Rolescan contain other roles(known asnested roles).
When a user is assigned aparent role, theyinherit all child roleswithin it.
Example:
TheITIL roleincludesincident_managerandproblem_managerroles.
AssigningITILto a userautomatically grants them all the permissions of the included roles.
Roles Are Assigned by Administrators
Typically, roles are assigned by aSystem Administratoror an authorized user.
Role-Based Access Control (RBAC)
ServiceNow usesRBACto control access to applications, records, and actions.
B. Users can click on the Personalize Role feature to try different roles
Incorrectbecause userscannot manually switch rolesunless they have theimpersonation privilege.
C. A role is granted to a user by the System Administrator
Partially correct, butnot the best answerbecause rolescan also be assigned via groupsor automated processes, not just by a System Administrator.
D. Each user has a role in the ServiceNow platform
Incorrectbecause not all usersmust have a role.
Example:A self-service user can access the systemwithouthaving any specific role.
ServiceNow Docs: Role-Based Access Control
ServiceNow CSA Official Training Guide (User & Role Management)
Key Characteristics of Role Assignment:Why the Other Options Are Incorrect?References from Certified System Administrator (CSA) Documentation:This confirms thatroles can contain other roles, and when a user is assigned a role, they inherit all roles within it.
Which tool is used to have conversations with logged-in users in real-time?
Connect Chat
Now Messenger
User Presence
Comments
Connect Chatis the real-time messaging tool in ServiceNow that allows logged-in users to communicate instantly within the platform. It provideslive, interactive conversationsbetween users, which is particularly useful for collaboration in IT Service Management (ITSM), HR, and other ServiceNow modules.
Primary Functionality:
Enablesreal-time conversationswithin ServiceNow.
Allows communication betweenindividual users, groups, and support teams.
Can be integrated into variousServiceNow applications(e.g., Incident Management, HR Service Delivery).
Where to Access It:
Users can accessConnect Chatfrom theConnect Sidebar(a chat window on the right side of the screen).
Available under:All → Connect Chat.
Key Features:
Supportsone-on-one and group conversations.
Integrates withwork notes and commentson ServiceNow records.
Providesnotifications and presence indicatorsto show who is online.
Understanding Connect Chat:
B. Now Messenger– Incorrect.
No such tool calledNow Messengerexists in ServiceNow.
C. User Presence– Incorrect.
User Presenceallows users to seewho is onlinein the system but does not provide chat functionality.
D. Comments– Incorrect.
Commentsare used to provideasynchronous updateson records but do not enablereal-time communication.
Explanation of Incorrect Answers:
ServiceNow Product Documentation → Connect Chat
ServiceNow CSA Study Guide → Collaboration Tools in ServiceNow
ServiceNow Knowledge Base → Connect Chat vs. User Presence
References from Certified System Administrator (CSA) Documentation:
What are the 6 methods available for user authentication?
Local Database: The user name and password in their user record in the instance database.
Multifactor: The user name and password in the database and passcode sent to the user's mobile device that has Google Authenticator installed
LDAP: The user name and password are accessed via LDAP in the corporate directory, which has a matching user account in the database.
SAML 2.0: The user name and password configured in a SAML identity provider account, which has a matching user account in the database.
OAuth 2.0: The user name and password of OAuth identity provider, which has a matching user account in the database.
Digest Token: An encrypted digest of the user name and password in the user record.
Thesix methods available for user authenticationin ServiceNow are:
Local Database– The user authenticates using a username and password stored in theinstance database.
Multifactor Authentication (MFA)– The user provides their username, password, and apasscode(e.g., from Google Authenticator).
LDAP (Lightweight Directory Access Protocol)– The user authenticates using credentials stored in a corporateLDAP directory.
SAML 2.0 (Security Assertion Markup Language)– The user is authenticated via an externalSAML Identity Provider (IdP).
OAuth 2.0– The user authenticates via anOAuth identity provider(such as Google, Microsoft, or Facebook).
Digest Token Authentication– The user authenticates using anencrypted tokenrather than directly submitting a password.
Thus, the correct answer is:
A, B, C, D, E, F
ServiceNow supports multiple authentication methods to provideflexibility, security, and integration capabilitieswith external identity providers.
Local Database Authentication:
ServiceNow storesusernames and passwordsin the internal database.
Users authenticate directly with the instance.
This method is commonly used when no external authentication provider is configured.
Multifactor Authentication (MFA):
Enhances security by requiringtwo authentication factors:
Username and password(stored in the database).
Passcodefrom a registered device (such as Google Authenticator, Microsoft Authenticator).
MFA helpsprevent unauthorized accesseven if credentials are compromised.
LDAP Authentication:
Allows users toauthenticate against an external LDAP directory(such as Microsoft Active Directory).
The user must have amatching record in the ServiceNow user table ([sys_user]).
ServiceNowdoes not store passwordswhen using LDAP; it only validates credentials against the directory.
SAML 2.0 Authentication:
Users authenticate via aSAML Identity Provider (IdP)such asOkta, Microsoft Azure AD, or Ping Identity.
ServiceNow acts as aService Provider (SP)and does not store passwords.
ProvidesSingle Sign-On (SSO)capabilities.
OAuth 2.0 Authentication:
Allows authentication viaOAuth providers(Google, Facebook, Microsoft, etc.).
Users do not need to store passwords in ServiceNow; instead, authentication is delegated to theOAuth identity provider.
Digest Token Authentication:
Uses anencrypted token(instead of a plaintext password) to authenticate users.
Often used forAPI-based authenticationor scenarios where passwords should not be transmitted over the network.
Each method aligns with ServiceNow's authentication mechanisms as per official documentation.
ServiceNow supports a hybrid authentication approach, allowing multiple methods to coexist.
ServiceNow Docs – Authentication
ServiceNow Security Best Practices – Authentication & Access Controls
ServiceNow Developer Portal – SSO & OAuth Authentication
Why These Are the Correct Methods?References from Certified System Administrator (CSA) Documentation:
Copyright © 2021-2025 CertsTopics. All Rights Reserved
