New features and products in Xanadu

• Upload and process multiple files to the staging table simultaneously.
• Use the Data Import Builder to configure data sources and transform maps for importing data.
• Perform field and record level data validations in the Data Validation Assist table. Additionally, 8 pre-configured field level validations are also available with the base system.

• Monitor your success portfolio on the Success landing page. View the status of your current engagements, upcoming renewals, and new engagements.
• View engagement details including success initiatives, success blueprint, and monitor your success cases.
• Create success plays and success blueprints to define manual or automated activities using the workflow launcher.

• Risk assessment project reader [sn_risk_advanced.risk_asmt_project_reader]: Provides read only access to the risk assessment projects.
• Risk assessment project user [sn_risk_advanced.risk_asmt_project_user]: Provides the ability to create risk assessment projects and update or delete only the projects created by the user.
• Risk assessment project manager [sn_risk_advanced.risk_asmt_project_manager]: Provides the ability to create, update, and delete any risk assessment projects.

• Use a uniform workflow for all types of risk response tasks. A standardized workflow for risk response tasks enhances the management of all types of risk response tasks, promotes consistency, and reduces the need for customization.
• Configure multiple levels of approvals for the risk response tasks using the approval configurator. By default, a single level of approval is enabled for all types of risk response tasks, where the risk owner can approve the tasks. These approvals can be configured based on requirements.
• Reject a risk response task and move it to the work in progress state without closing it. This feature helps the risk response task owner to modify the response strategy if the approver is unsatisfied with the response.
• Create action items with an independent workflow and link them to the risk response tasks when they are in the Draft or Work in progress state.
  Note: You can create risk response action items for all types of risk responses except for Risk acceptance tasks.
• Copy risk response plans from the previous risk assessment to the current risk assessment while reassessing.
• Link an open risk response task from the previous assessment to the current risk assessment while reassessing. You can also edit or remove an existing risk response task.

• Enable the issue linking option on the Risk Assessment Methodology (RAM) form to create an issue or link an existing open issue with the risk assessment.
• View issue details from the configurable issue card available on the risk assessment.
• Identify newly created issues from existing linked issues with a visual differentiator on the issue card.
• Edit or remove issues.

• Use a uniform and enhanced workflow for the risk event tasks. A standardized workflow enhances the management of risk event tasks.
• Configure multiple levels of approvals for the risk event tasks using the approval configurator.
• Reject a risk event task and move it to the work in progress state without closing it. This feature helps the risk event task owner to modify the risk event if the approver is unsatisfied.

• Risk event entry date
• First loss entry date
• Last loss entry date
• First recovery entry date
• Last recovery entry date
• Custom date

• Notify the risk assessor with a notification email when a risk assessment is approved or rejected.
• Define a specific group as the respondent type in the Feedback Integration Configuration form when the target record doesn't have a user or group. For more information, see Configure a feedback integration.
• Configure a single currency mode for advanced risk assessments. This feature displays all financial values in the selected single currency, confirming consistency and clarity in all fields. For more information, see Single-currency mode.
• View the completion date of the most recent risk identification in the new field Last completed date, added to the Risk Identification form. For more information, see Set up risk identification integration.

• On the platform, while taking the survey/assessment, both active and inactive questions were visible.
• On the portal, only active questions were visible.

After upgrades and deployments of new applications or integrations, run quick start tests to verify that Assessments and Surveys works as expected. If you customized Assessments and Surveys, copy the quick start tests and configure them for your customizations.

For more information, see Quick start tests for Assessments and Surveys.

With templates in CWM, you get a predefined format for Boards and Docs, which you can use as-is or customize to suit your workflow. You can use templates for new Boards and Docs or apply them to existing ones. You can also save an existing Board or Doc in its current format as templates.

Template Center provides a centralized space where you can manage all templates for Boards and Docs.

• Save Board display preferences as personal or shared views.
• Create shared views for the team so that all the team members consuming the data have the same experience.
• Create multiple views for the same Board so that you can display data in a way that is fit for your audience.
• Quickly switch between views to avoid manually updating display preferences each time the audience is changed.
• Update the view preferences anytime to adapt to changing processes.

Extract data of the tasks on a CWM Board into a CSV or Microsoft Excel file so that you can use it to obtain insights, share with stakeholders, and prepare for analysis or presentations.

The exported CSV or Excel file doesn't retain the hierarchy of the CWM tasks from the List view.

Export pages of CWM Docs as PDF files so that you can share documentation across emails to multiple teams or to stakeholders who don’t have access to CWM.

Save time by duplicating an existing Doc to copy all its pages and content without having to copy the information manually. The copied Doc is added to the same Space as the original Doc.

Board automations to notify and send an email can now include users and groups from the columns of the CWM task. For example, you can create an automation to notify the task assignee whenever a task priority is updated. The users are dynamically picked from the Assigned to column of the task. Similarly, a custom column of the type People can be used to create such automation.

The CMDB Health Dashboard is now built using UI Builder components and is fully integrated into the CMDB Workspace. When you select either of its views, it opens in CMDB Workspace. Health dashboard has a modernized look and feel of the Next Experience user interface

CI health is now reported on CI forms within the CI Health tile in CMDB Workspace.

• CI summarization: Shows CI details such as discovery and class, and tallies of records that are related to the CI such as incidents, alerts, and security vulnerabilities, directly on CI forms.
• Manage duplicate CIs: Guides you step-by-step through the process of reviewing de-duplication tasks, and then creating and running de-duplication templates to remediate tasks that you choose. As you respond to choices presented by the manage duplicate CIs skill, you receive clear guidance for what should be your next step in the remediation process. This skill also provides root cause analysis to help you prevent future generation of duplicate CIs.

After upgrades and deployments of new applications or integrations, run quick start tests to verify that CMDB works as expected. If you customized CMDB, copy the quick start tests and configure them for your customizations.

• SSP
• Security Assessment Report (SAR)
• POA&M

• Use the Information Owner (sn_irm_cont_auth.information_owner) role to view and update the information types of an authorization package.
• Use the Audit reader (sn_audit.reader) lite role to view audit-related entities, such as engagements.
• Create and manage issues as a system user.

• Use workflows to identify and set up solutions (services, service offerings, business applications, and application services). The guided walk-through includes insights into each solution's data readiness for DPM.
• Access the settings pages to configure the DPM Workspace using the provided system properties.
• Configure solution page headers and the General info section of the Info tab.
• Map KPI groups to solutions to view metrics in the DPM Workspace.
• Use links to helpful resources.
• Refer to common question links to aid implementation.
• Follow the prompts for more setup tasks.

• Update the description of a KPI indicator that's provided by the base system. The KPI indicators on solution records come from Performance Analytics (PA). In the DPM Workspace, you can select a tooltip on a solution indicator card to see a description that clarifies the indicator data. Even though the descriptions come with the base system, administrators can update the descriptions to accommodate the organization.
• With the June 2024 release and after, the KPI latest score system property is set to true for new and zBoot customers.

• Added problem (PRB) records to the Needs attention attributes so that you can identify problems on the following solutions.
  • Services and service offerings. Problems are related to the service offering via the service offering record on the form, impacted services related list, and on the affected CIs related list. Problems are then rolled up to the parent service and should be deduplicated at the parent service level.
  • Business applications. Problems are related to the application service via the configuration item field on the form. Problems are then rolled up from the application service to the business application and should be deduplicated at the parent service level.
  • Application services. Problems are related to the application service via the configuration item field on the form.
• Updated the team logic in the DPM Contacts tab for each solution. When you select the Contacts icon () next to the Needs attention panel, the Teams tab includes multiple teams that support the record. The multiple team assignment is an existing platform feature that was added to Service Portfolio Management so the teams can be viewed in the DPM Workspace. For more information on the platform feature, see Teams related list.

For single-subject Employee Relations cases, the Subject of Allegation field in relevant case tabs is automatically filled in with the subject's name.

• TRM catalog
• Technical debt
• TPM lifecycles
• TPM risk
• Technology portfolio audit

• View Information Objects and SDLC Components associated with a digital integration or digital interface.
• View Credentials assigned to a digital interface, digital integration, and business application.
• Set the Provider company instead of Provider business application, for a Provider digital interface in a digital integration.

• Business Architecture
  • Business Units
  • Departments
  • Goals
  • Value Streams
  • Value Stream Stages
  • Business Capabilities
  • Business Processes
  • Demands
• Application Portfolio
  • Business Applications
  • Application Services
  • Digital Integrations
  • Digital Interfaces
• Information Portfolio
  • Data Domains
  • Information Objects
  • Architectural Artifacts
  • Architectural Artifact Versions
  • Diagrams
• My Entities
  • My Business Capabilities
  • My Business Processes
  • My Business Applications
  • My Application Services
  • My Information objects
  • My Architectural Artifacts
  • My Technology Reference Model Products
  • My Digital Integrations
  • My Digital Interfaces

• Shape Libraries
• Modeling menu options
• Entities
• Relationships

• Business applications by TCO score
• Business application TCO by cost type and planned disposition for FY:Q (Current quarter)
• Top 10 business applications with the highest cost for FY:Q (Current quarter)

• For a software TRM product, the Operating system field is added. Using this field, the operating system on which the software TRM product can be deployed, is tracked.
• Added support for creating wildcard for TRM lifecycle versions, to make it easier to specify a TRM standard without the need to specify the minor version.

Create or update an artifact with type architectural decision record (ADR) to align it with your business requirements.

If you choose the Simple option, the Approval section is enabled both on the manual metric definition form and within the metrics. Using this section, you can designate approvers directly on the metric definition form. This option has a single level of approval.

If you choose the Advanced option, the Approval section is unavailable on the manual metric definition form and within the metrics, helping to prevent you from assigning approvers there. Instead, approval can be obtained by setting the approval conditions, tables, and approvers in the GRC: Approver Configurator application. This application also enables you to define multiple levels of approvals.

• Look up Case Details
• Submit Fraud Report
• Update Case Resolution Status

Use the new Patient identifier table to maintain and manage multiple identifiers such as patient MRN, social security number, and more.

For instructions on migrating data from the patient table to the patient identifier table, please reach out to Now Support for the fix script.

• View discovery trends and tasks and access relevant ITOM Visibility apps and information through Discovery Admin Workspace Home.
• Gain insights into the performance of all your discoveries through the information in the Schedules tab.
• Analyze discovery errors and troubleshoot them using information in the Diagnostics tab.
• Access on-demand reports and optimize discovery operations using information in theInsights tab.

• Dell EMC Data Domain storage.
• Dell EMC PowerMax storage.
• AWS services in the China region - Available with the Discovery and Service Mapping Patterns November 2024 store release (1.21.0) on the Now Platform Xanadu Patch 3 instance.
• REST-based Fortinet firewall and FortiGate VDOMs - Available with the Discovery and Service Mapping Patterns November 2024 store release (1.21.0).
• Azure Marketplace - Available with the Discovery and Service Mapping Patterns November 2024 store release (1.21.0). The pattern supports the discovery of the following Azure Marketplace products:
  • Virtual Machine
  • SaaS
  • Azure Application

Discover Java processes to comply with Oracle licensing agreements- Use the ITOM Oracle GLAS plugin (1.8.4) November 2024 store version to track Java installations and usage.

• Run other applications without storing any credentials on the instance with the Microsoft Azure Key vault.
• MID Server supports log file compression. The new log file handler settings are available as MID Server properties on the instance. The compression mode isn't enabled out of the box.

• Upgrade the CNO for Visibility Informer from the ServiceNow instance.
• Control Informer execution parameters from the instance.
• Store instance credentials in the Microsoft Azure Vault when Informer uses the Azure Kubernetes Engine (AKS)
• Enable Informer to connect to the instance using OAuth2.0 authorization

Use Now Assist in Conversational Spokes to utilize the conversational ability of Integration Hub Spoke actions. Now Assist in Conversational Spokes offers generative AI capabilities to make spoke actions conversational. With this, you can perform business actions and automate business workflows through conversational interface.

Install Now Assist for Conversational Spokes plugin and start utilizing the conversational ability of the Look up User spoke action in Microsoft Active Directory v2 spoke. You can call this action from a conversational interface like Now Assist.

Generate an endpoint for webhooks in the third-party applications that support OAuth 2.0 authentication. The endpoint enables webhooks to connect with your ServiceNow instance.

Generate the endpoints by updating the base system external event sources on your ServiceNow instance. After that, you can configure the endpoint on the third-party application and enable it to send a webhook to the ServiceNow instance to execute a flow. Based on the authentication type that the third-party system supports, you can generate a hash, secret, or token, or add roles or a user to the external event source. Finally, you generate the endpoint that you can use on the third-party system webhook.

Enable journeys to support a change of manager.

The MID Server integration with the Azure Key vault enables Orchestration, Discovery, and Service Mapping to run without storing any credentials on the instance.

• Create AI agents to gather data, make decisions, and complete tasks that would otherwise need to be done by a human.
• Add one of the following tools or information sources for the AI agent to execute:
  • Catalog item
  • Conversational topic
  • Flow action
  • Now Assist skill
  • Record operation
  • Script
  • Search retrieval
  • Subflow
  • Web search

Create a use case with an execution plan to solve complex tasks with Now Assist. You can also do the following tasks:

• Clone an existing use case to avoid manual configuration.
• Create triggers when creating a use case that calls the AI agent when a condition or objective is observed.
• Test a use case before execution.
• Resolve record-based cases with AI agents.

• You have the option to edit and save recommended steps to worknotes or create a response task.
• The recommended steps are based on existing security incidents and knowledge articles.
• This skill is supported for security incidents in the Security Incident Response Workspace and in UI16 (legacy).

• You have the option to edit and save generated analysis details.
• Post-incident analysis is supported for security incidents in the Security Incident Response Workspace and in UI16 (legacy).
• The generated post-incident analysis is saved in the Post incident analysis field on the Details tab and on the Overview tab on security incidents after you close them in the Security Incident Response Workspace.
• In UI16 (legacy), the generated post-incident analysis is displayed on the Post Incident Review tab of the security incidents.

• Quickly summarize key details of security incidents with long activity streams.
• Analysts can edit summaries generated by AI and post them to work notes. The summaries remain editable on security incidents, and other analysts can continue to edit and remove them before updating work notes.
• Share summaries that include the following information with IT managers, other analysts, and key stakeholders:
  • Underlying issue
  • Details
  • Observations
  • Key actions taken
  • Closure details