Best Practice for the role which should be provided to Development Vendor
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-27-2024 11:28 PM
Hello everyone
Actualy, I'm wondering what role should be provided to Development Vendor other than admin role, because there is the case that customer cannot provide full-admin access to Development Vendor.
I really appriciate if you can share your solution or idea.
Thank you!
- Labels:
-
Architect

- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-27-2024 11:50 PM - edited 10-27-2024 11:50 PM
Hi @Yusuke , if the development vendor needs to implement something in global scope you can't avoid that they need the admin role. But if they only need to change something on an existing application or maybe should create a new application it's sufficient to give them the application's admin role. E.g. you could create a new Application with own scope, which will include a application admin role. This role allows to do everything within the scope but not outside. For sure the vendor needs support from someone who has admin role - but only if they needs access to other app or global scopes.
Greets
Daniel
Please mark reply as Helpful/Correct, if applicable. Thanks!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-28-2024 12:56 AM
Hi @Daniel Borkowi1 , thank you for answering.
I understood that if in the case implement should be performed in global scope, definately admin role is required. But do we have official document which ServiceNow company clealt called out this thing?

- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-28-2024 01:15 AM
Only what you can find here:
- https://docs.servicenow.com/csh?topicname=application-administration.html&version=latest
- https://www.servicenow.com/content/dam/servicenow-assets/public/en-us/doc-type/success/insight/platf...
- https://www.servicenow.com/content/dam/servicenow-assets/public/en-us/doc-type/success/enablement/pl...
Greets
Daniel
Please mark reply as Helpful/Correct, if applicable. Thanks!

- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-28-2024 02:56 AM - edited 10-28-2024 02:56 AM
Think of setting up a Citizen Developer Process for your Development Vendor closely tied with your Group Structure for role and access. You can think of a Catalog Item for various applications for your Development Vendor for them to choose which Group/Process/Action they would like to have access in your Instance. Define an approval then to allow the specific user to be added to the Group which will give them the required role. Work this process out with your Architect and Platform Owner so that you know the various roles being granted and have a Dashboard to manage and monitor the various Groups and usage.
Hope this Helps.
If this was helpful, do give a thumbs up/mark it as Correct to close the Thread, Thanks!