Governance
Governance is the largest and most critical exam domain, focusing on establishing the processes, policies, and roles required to maintain the quality, trustworthiness, and usefulness of CMDB data over its entire lifecycle. It ensures the CMDB remains an accurate single source of truth for IT and business services.
CMDB Health — The Three Cs
CMDB Health is measured by three core metrics that assess data quality across all Configuration Items. These metrics — Completeness, Correctness, and Compliance — form the foundation of CMDB governance and are central to the Health Dashboard.
Completeness
Measures whether required attributes are populated. The key question: "Do we have all the necessary data?" For example, a server CI must have Name, IP Address, Operating System, and Managed By Group populated to be considered complete.
Correctness
Measures whether data is accurate and conforms to expected values. The key question: "Is the data right?" Correctness has several important sub-metrics:
- Staleness — CI not updated within the defined threshold (default 60 days). Indicates a data source is no longer refreshing the record.
- Orphans — CIs with no relationships. Indicate missing connections to other CIs or services.
- Duplicates — Multiple CIs representing the same physical or logical asset. Indicate identification rule gaps or conflicting data sources.
Example of a correctness issue: a CI with an invalid operational status value, or a server CI showing an IP address that no longer exists.
Compliance
Measures adherence to defined data models (CSDM). The key question: "Does data follow the agreed structure?" For example, an Application CI must have a "Runs on" relationship to a Server CI to be considered compliant.
A CI can be 100% Complete (all fields filled) but 0% Compliant (values don't match audit expectations). Completeness checks that fields are populated; Compliance checks that the values in those fields meet predefined standards.
Health Rules and Configuration
- Health Rules: Administrators configure what "complete," "correct," and "compliant" means per CI class.
- Health Dashboard: Visual reports of scores with drill-down capability into failing CIs.
- Audit Jobs: Scheduled jobs that evaluate CIs against health rules on a recurring basis.
- Health score thresholds are customizable per CMDB group per KPI/metric, stored in the cmdb_health_scorecard_group_threshold table.
- KPI weights in overall health aggregation are configurable to prioritize the metrics most important to the organization.
CMDB Health Dashboard scheduled jobs are DISABLED by default. They must be manually enabled before any health data is collected. This is a commonly tested exam topic. Navigate to Configuration > CMDB Dashboard > CMDB Health Dashboard Jobs and enable the relevant jobs.
The Three Cs Summary
| Metric | Question | What It Measures | Example Issue |
|---|---|---|---|
| Completeness | Do we have all the data? | Required attributes are populated | Server CI missing IP address or OS field |
| Correctness | Is the data right? | Data accuracy and currency (staleness, orphans, duplicates) | CI not updated in 90 days (stale), invalid status value |
| Compliance | Does it follow the structure? | Adherence to CSDM data models and desired state | Application CI missing "Runs on" relationship to Server |
CMDB Data Manager
CMDB Data Manager is a modern, policy-driven framework for automating CI lifecycle management, introduced in the Rome release. It replaces legacy approaches for retiring, archiving, and deleting CIs with a structured, auditable process.
Policy Types
Data Manager Policy Types
| Policy Type | Action | Prerequisite | Key Details |
|---|---|---|---|
| Retire | Sets CI lifecycle status to Retired (End of Life) | Active life-cycle rule must exist for target class | CI remains in CMDB but marked inactive. Can still be referenced historically. |
| Archive | Moves CI from cmdb_ci to ar_cmdb_ci table | CI MUST already be Retired | Data flattened, stored as read-only, removed from active CMDB. Apply Retention Time can auto-delete from archive. |
| Delete | Permanently destroys CI record and all relationships | CI MUST already be Retired | Irreversible. Target CIs listed in CSV attached to policy task. |
| Attestation | Sends verification task to CI owners | Managed By Group must be populated | CI owners review and verify accuracy. NOT associated with a subflow. Tasks must be manually processed. |
| Delete Related Entry | Deletes entries from cmdb_related_entry table | Records must exist in Related Entries table | Cleans up related entry records that are no longer needed. |
Archive and Delete policies can ONLY target CIs already in a Retired state. The correct flow is always: Retire FIRST → then Archive or Delete. You cannot skip the Retire step. This is heavily tested on the exam.
Policy Configuration Steps
- Select Policy Type — choose from the five available types
- Define Filter Conditions — use AND/OR with multiple criteria to target specific CIs
- Configure Needs Review — optional, generates an approval task before execution
- Associate Subflow — optional, out-of-box subflow is "Retire Configuration Items"
- Preview Impact — see estimated number of affected CIs, exclude individual CIs if needed
- Publish — policy is processed by daily scheduled jobs
Data Manager Processing
- Daily scheduled job runs by default at approximately 3:00 AM (configurable)
- When Needs Review is enabled, tasks are assigned to the Managed By Group with email notifications
- Approval is required before the associated subflow executes
- Batch limit: 10,000 CIs per task (e.g., 30,000 matching CIs = 3 separate tasks)
- Stale tasks are auto-closed after 90 days (configurable via cmdb.data.manager.stale.task.life.in.days property)
- Error logging with admin notifications for failed operations
Dependent CI Management
When a parent CI is retired, archived, or deleted, cascade operations automatically generate policies for child/dependent CIs. Two scheduled jobs support this process:
- "CMDB Cascade Retire Dependent CIs" — populates the cmdb_dependent_ci_ledger table with dependent CIs
- Regular Data Manager processor jobs — process the generated cascade policies
Exclusion Lists
Three Levels of Exclusion
| Exclusion Level | Scope | Effect |
|---|---|---|
| Global Exclusion List | All policies | CI is excluded from ALL Data Manager policies regardless of type |
| Policy-Type Exclusion List | Specific policy type | CI is excluded from all policies of a specific type (e.g., all Retire policies) |
| Individual CI Exclusion | Single policy execution | During preview, exclude specific CIs from that particular execution only |
Lifecycle Stage and Status Management
CSDM 4.0 introduced standardized lifecycle fields to replace the legacy install_status and operational_status fields, providing a more consistent and automatable approach to tracking CI lifecycle.
Legacy vs. CSDM Standard
Legacy vs. CSDM Lifecycle Fields
| Aspect | Legacy Approach | CSDM Standard |
|---|---|---|
| Fields | install_status (choice list 1–8), operational_status (1–6) | lifecycle_stage and lifecycle_stage_status on cmdb_ci |
| Configuration | Hardcoded choice values | Configurable through CSDM Lifecycle Mapping tool |
| Synchronization | No automatic sync between fields | Auto-synced between legacy and new fields |
| Data Manager | No native integration | Native Data Manager integration |
| Reporting | Inconsistent across instances | Standardized reporting across all instances |
Lifecycle Stage Values
Lifecycle Stages and Their Statuses
| Lifecycle Stage | Description | Available Statuses |
|---|---|---|
| Planning | CI is being planned and not yet operational | Design, Development, Testing |
| Operational | CI is active and in use | In Use, In Maintenance, Standby |
| End of Life | CI is being decommissioned | Retiring, Retired |
| Retired | CI is no longer in use | Decommissioned, Obsolete |
The CSDM Lifecycle Mapping tool synchronizes legacy install_status and operational_status fields with the new lifecycle_stage fields. This ensures backward compatibility while enabling modern lifecycle management and Data Manager integration.
Data Certification
Data Certification is a governance process where CI owners periodically verify the accuracy of their CI data. It is a separate mechanism from the Data Manager Attestation policy type, though both serve verification purposes.
How Data Certification Works
- Tasks are generated on a defined schedule
- Tasks are assigned to CI owners who review their CIs
- Owners either certify the data as accurate or flag CIs for correction
- Certification results can drive further remediation workflows
Data Certification vs. Data Manager Attestation
Certification vs. Attestation Comparison
| Aspect | Data Certification | Data Manager Attestation |
|---|---|---|
| Scope | Verification and accuracy only | Also supports lifecycle decisions |
| Mechanism | Own plugin and workflow | Integrated policy framework within Data Manager |
| Modern Guidance | Legacy approach | ServiceNow recommends Data Manager for new implementations |
Use CMDB Health scores to prioritize which CIs are included in certification campaigns. Focus certification efforts on CIs with low health scores to maximize governance impact.
Duplicate CI Remediation
Duplicate CIs are a common data quality issue that impacts CMDB accuracy. ServiceNow provides four structured methods for handling duplicates, all designed to preserve data integrity during the merge process.
Four Methods for Handling Duplicates
- De-duplication Wizard — Guided step-by-step process from CMDB Workspace. Select a master CI, choose which attributes to preserve from each record, merge relationships, and optionally delete or retire the duplicate.
- Bulk De-duplication — Process multiple duplicate sets at once using De-duplication Templates that define the merge strategy per CI class.
- De-duplication Tasks — Automatically created by the IRE when identification finds multiple matches. Also created by the CMDB Health correctness job. Tasks are assigned to CMDB admins and appear in the Workspace.
- Remediation Playbook — Guided workflow for comprehensive data quality issues, including but not limited to duplicates.
Always use De-duplication Tasks or the De-duplication Wizard rather than manually deleting duplicate CIs. The wizard preserves relationships and attribute data from both records, ensuring no important data or references are lost. Use structured de-duplication to preserve data integrity and update all references.
Consumer-Owner-Provider (COP) Model
The Consumer-Owner-Provider (COP) model defines the three key roles in CMDB data governance, establishing clear accountability for data quality across the organization.
COP Model Roles
| Role | Relationship to Data | Responsibilities |
|---|---|---|
| Consumer | Uses CMDB data for IT processes (ITSM, ITOM, etc.) | Define data requirements, provide feedback on data quality issues |
| Owner | Accountable for data quality for a domain/class. Does NOT enter data directly. | Set policies, define health rules, act on certification tasks, ensure standards are met |
| Provider | Responsible for creating and maintaining data | Execute updates via discovery/integrations/manual entry, fix quality issues flagged by health rules |
Ownership Hierarchy
- CMDB Owner — Single person with overall authority over the CMDB. Often chairs the board of domain owners.
- Domain Owners — Assigned per CSDM domain. Manage Technical Services is often further split into sub-domains (Server, Network, Database).
- CI-Level Ownership — Defined by the Managed By and Owned By fields on each CI record.
"It should not be the configuration manager's responsibility to control the data. It is the data owner's responsibility." Owners are accountable for quality; Providers are responsible for the actual data entry and maintenance.
Policy Enforcement and Remedial Actions
Effective governance requires both preventing bad data from entering the CMDB and correcting issues that are discovered after the fact. ServiceNow provides multiple enforcement methods and remedial action types.
Enforcement Methods
Policy Enforcement Methods
| Method | Type | Examples |
|---|---|---|
| Preventive / Hard Control | Blocks bad data from entering the CMDB | Mandatory fields, read-only forms, requiring Change requests for CI modifications |
| Corrective / Soft Control | Identifies and fixes issues after data entry | CMDB Remediation Rules auto-create tasks when violations are detected |
| Workflow Integration | Bakes quality into existing IT processes | Change workflow requires linking impacted CIs, ensuring relationships are maintained |
Remedial Actions
- Automated Tasks (primary method) — Health violations automatically generate tasks assigned to Providers or Owners for resolution.
- Bulk Remediation — For widespread, well-understood issues. Use with extreme caution to avoid unintended data changes.
- Process Adjustment — If issues are systemic, revise the underlying policy or ingestion process rather than fixing individual CIs.
Only ONE orphan rule per class is allowed. No orphan rules exist out-of-the-box — they must be created manually by administrators. Orphan rules define what constitutes an orphan CI (one with no relationships) for each class.
Desired State / Compliance Audits
Compliance measures whether CI field VALUES meet predefined standards, going beyond simple completeness checks. Desired State audits allow administrators to define expected configurations and automatically identify CIs that deviate.
Configuring Desired State Audits
- Define a filter to target specific CIs (e.g., Class is Windows Server AND Environment is Production)
- Set template conditions that define the desired state (e.g., RAM >= 16GB, Antivirus = Installed)
- Schedule the audit to run on a recurring basis
Audit results identify CIs that do not meet the desired state conditions. These results feed directly into the Compliance KPI of the CMDB Health Dashboard, contributing to the overall health score.
Desired State audit results are included in the Compliance KPI of CMDB Health. This means properly configured audits directly improve governance visibility through the Health Dashboard.
CMDB Workspace — Governance Hub
CMDB Workspace is the centralized hub for CMDB administration and governance. It provides multiple pages, each focused on different aspects of CMDB management. The Governance page is heavily tested on the exam.
Workspace Pages
CMDB Workspace Pages
| Page | Key Features | Exam Relevance |
|---|---|---|
| Home | Admin dashboards, Data Manager status, CI health KPIs | General overview questions |
| Governance | Data Manager policies, De-duplication Dashboard, Templates, health scores | Heavily tested — know all governance features available here |
| CMDB 360 | Multi-source data comparison, gap analysis, source value override | Tested in Ingestion domain scenarios |
| Insights | Query Builder, dashboards, Natural Language Query (NLQ) | Tested in Insight domain |
| Management | CI Class Manager, relationship management, CI forms | Tested in Configuration domain |
Key Roles
CMDB Workspace Roles
| Role | Access Level |
|---|---|
| cmdb_workspace_user | Day-to-day CMDB management tasks |
| sn_cmdb_admin | Full administrative access to CMDB Workspace |
| data_manager_admin | Data Manager policy administration |
| data_manager_user | Process Data Manager tasks (approve, reject, review) |
| sn_csdm_admin | CSDM-specific constructs and configuration |
| itil | Standard ITSM role — view CIs, create/update ITSM records |
Governance Exam Scenarios
The following scenarios represent the types of questions commonly seen on the CIS-DF exam for the Governance domain. Practice reasoning through each scenario before reading the answer.
A server CI was last updated 90 days ago. The default staleness threshold is 60 days. Which CMDB Health metric is impacted?
Correctness — specifically the Staleness sub-metric. The CI has not been refreshed by any data source within the 60-day threshold, so it is flagged as stale. This reduces the Correctness KPI score.
An organization wants to automatically retire servers not discovered in 6 months, with manager approval. How to configure?
Create a Data Manager policy of type 'Retire': Filter condition = Class is Server AND Updated is before Last 6 months. Enable 'Needs Review' checkbox. Ensure Managed By Group is populated on target server CIs. Publish the policy. The daily scheduled job will identify matching CIs and generate approval tasks to the Managed By Group.
After retiring 500 servers, the admin creates an Archive policy, but no CIs appear in preview. Why?
Archive policies can ONLY target CIs already in a Retired lifecycle state. If the retired servers have lifecycle_stage set to 'End of Life' but the Archive policy filter does not include 'Life Cycle Stage is End of Life,' the CIs will not be picked up. Ensure the filter includes the appropriate lifecycle stage. Also verify active life-cycle rules exist for the target class.
The CMDB Health Dashboard shows 0% for all metrics. What is the most likely cause?
The CMDB Health Dashboard scheduled jobs are disabled by default. They must be manually enabled before any health data is collected. Navigate to Configuration > CMDB Dashboard > CMDB Health Dashboard Jobs and enable the relevant jobs.
What is the difference between Completeness and Compliance in CMDB Health?
Completeness measures whether fields are populated (are required/recommended attributes filled in?). Compliance measures whether field VALUES meet predefined standards (do actual values match expected values in Desired State audits?). A CI can be 100% Complete (all fields filled) but 0% Compliant (field values don't match audit expectations).
Key Takeaways
- Governance is 35% of the exam — the largest and most critical domain
- The Three Cs: Completeness (missing data), Correctness (wrong data/staleness/orphans/duplicates), Compliance (CSDM structure adherence)
- CMDB Health Dashboard jobs are DISABLED by default — must be manually enabled
- Data Manager lifecycle order: Retire FIRST → then Archive or Delete (never skip Retire)
- Archive and Delete policies can ONLY target CIs already in Retired state
- Data Manager batch limit: 10,000 CIs per task. Stale tasks auto-close after 90 days
- Three levels of exclusion: Global, Policy-Type, and Individual CI
- Consumer-Owner-Provider (COP): Owners are accountable, Providers are responsible, Consumers use the data
- Only ONE orphan rule per class allowed — none exist out-of-the-box
- Data Certification is legacy; Data Manager Attestation is the modern approach
- Always merge duplicates via De-duplication Wizard/Tasks — never manually delete
- CSDM Lifecycle Mapping tool syncs legacy install_status/operational_status with new lifecycle_stage fields
- Dependent CI cascade: Retiring/archiving/deleting a parent auto-generates policies for children
Community-created study aids. Not official ServiceNow exam content.