What settings define and track cross-scope access to applications?

Restricted Caller Access (RCA) settings are the specific mechanism used to define and track cross-scope access within the ServiceNow platform. While standard Access Controls (ACLs) manage user permissions, RCA manages the permissions of the applications and scripts themselves as they attempt to move data between scopes (e.g., between Global and HR). This is particularly important for HRSD because it contains the most sensitive data on the platform. By utilizing RCA, administrators can ensure that even if a global script is compromised, it cannot pull data from the HR scope unless a specific RCA record has been created and " Allowed " . This provides an additional layer of " defense-in-depth " that is essential for maintaining the confidentiality and integrity of employee records in a shared enterprise environment.

================