In ServiceNow, when a new record is created on a standalone table, the domain of the new record is set to the user's current session domain by default. This means that the domain context in which the user is operating at the time of record creation determines the domain assignment for that record. This behavior ensures that the data is correctly categorized within the domain structure, adhering to the visibility and access controls that have been established.

The concept of domain separation in ServiceNow is integral to its multi-tenancy model, allowing for data, processes, and administrative tasks to be segregated across different domains within a single instance. This is particularly useful for managed service providers (MSPs) who need to maintain distinct operational environments for multiple customers or departments within the same ServiceNow instance.

For a new standalone table, unless explicitly defined otherwise, the system defaults to using the user's current session domain for new records. This is supported by ServiceNow's documentation on domain separation best practices and the management of data within domains12. It's important to note that while the default behavior is as described, administrators have the ability to configure domain rules and behaviors to suit specific organizational needs.

When an administrator working in a domain modifies a policy that exists in a higher domain or in the global domain, ServiceNow automatically creates a new record for that administrator's current domain and overrides the original policy. This ensures that the changes are specific to the current domain and do not affect the policies in the higher or global domains. This behavior is part of the domain separation feature, which allows different domains to have their own customized policies and configurations without impacting each other.

For more detailed information, you can refer to the following resources:

* ServiceNow Support Article on Domain Separation

* Developing Domain-Separated Applications

A multi-instance strategy is often adopted due to concerns about data security, regulatory compliance, and data sovereignty.

* Sensitive internal service provider data (B): Multi-instance architectures provide a separate database for each user interaction, which significantly reduces the risk of attacks and ensures data isolation1. This is crucial for service providers who handle sensitive data and require strict data control and privacy.

* Highly regulated industries : Industries such as finance, healthcare, and government are subject to stringent regulations. Multi-instance infrastructures offer on-premise-level security and allow for greater flexibility and control, which is necessary to comply with industry-specific regulations1.

* Data residency (D): Data residency refers to the physical or geographical location of an organization's data. Due to various national laws and regulations, organizations may need to ensure that their data is stored and processed within specific jurisdictions. Multi-instance infrastructures support this requirement by providing dedicated databases that can be located as per the data residency needs1.

Centralized reporting (A) and domain separation licensing cost (E) are not typically concerns that lead to a multi-instance strategy. Centralized reporting can be achieved within both multi-instance and multi-tenant environments, and domain separation licensing cost is a factor related to the ServiceNow platform's domain separation feature, which is different from the infrastructure considerations of multi-instance versus multi-tenant setups234.

In ServiceNow, domain separation is used to segregate data, processes, and administrative tasks into logical groupings called domains. This allows for control over data visibility and operations within an instance. When it comes to data visibility:

* Domain X: A user in Domain X will definitely have visibility to their own domain, as this is the primary context in which they operate1.

* Child domains of Domain X: Users can view data in their home domain (Domain X) and any child domains of that home domain. This is because child domains inherit permissions and visibility from their parent domains, allowing users in a parent domain to see data in the child domains1.

However, users do not have access to data present in their parent domains or other unrelated domains by default. The primary domain and default domain are typically reserved for global or top-level administrative purposes and are not automatically visible to users in customer domains unless specific permissions are granted12.

It's important to configure domain separation carefully to ensure that users have the appropriate level of access to data necessary for their roles while maintaining the security and integrity of the data across the instance31.

The purpose of the Domain Separation Center in ServiceNow is to configure and review domain configuration audits for errors and warnings. This tool is essential for administrators to ensure that domain separation is correctly implemented and maintained. It helps in identifying and resolving any issues related to domain configurations, thereby maintaining the integrity and proper functioning of the domain-separated environment.

* ServiceNow Domain Separation - Basics

* ServiceNow Domain Separation - Advanced Concepts