Is cmdb_read really for Requesters? Clarifying the Relationship between User Licenses and Roles

senon
Tera Sage

Hello expert!
I'm investigating user licenses in ServiceNow. There is a [license_role] table that associates user licenses with roles, but the [cmdb_read] role is defined as "Requester". However, based on my understanding of user licenses, I'm not sure if this applies to Requesters. Am I mistaken in my thinking?

 

・Full Filer
Can create, update, read, and delete records for all ServiceNow tables.

 

・Business Stakeholder
Can approve and read records for other users.

 

・Requester
Can submit requests through catalogs and can only read assets assigned to them or incidents they have created.

 

The cmdb_read role provides access to all information in the CMDB, including CIs managed by other users. However, does this apply to Requesters?

Best regard.

 

senon

1 ACCEPTED SOLUTION

Punit S
Giga Guru

Hi Senon,

 

You are correct in your understanding that the Requester role in ServiceNow is typically limited to submitting requests through catalogs and viewing only the assets assigned to them or the incidents they have created. The Requester role is not typically associated with full access to the CMDB or other tables in ServiceNow.

The [cmdb_read] role, on the other hand, is typically associated with the ability to read all information in the CMDB, including CIs managed by other users. This role is not specific to Requesters and may be assigned to other roles or users with the appropriate permissions.

In terms of the [license_role] table, it is possible that the [cmdb_read] role is associated with a user license for a role that is not Requester, such as ITIL or Asset Manager. It would be worth checking the license roles associated with the [cmdb_read] role in your specific ServiceNow instance to confirm.

 

Please mark my answer correct/helpful in case it adds value and moves you a step closer to your desired ServiceNow solution goal. 

Thanks,
Punit

View solution in original post

1 REPLY 1

Punit S
Giga Guru

Hi Senon,

 

You are correct in your understanding that the Requester role in ServiceNow is typically limited to submitting requests through catalogs and viewing only the assets assigned to them or the incidents they have created. The Requester role is not typically associated with full access to the CMDB or other tables in ServiceNow.

The [cmdb_read] role, on the other hand, is typically associated with the ability to read all information in the CMDB, including CIs managed by other users. This role is not specific to Requesters and may be assigned to other roles or users with the appropriate permissions.

In terms of the [license_role] table, it is possible that the [cmdb_read] role is associated with a user license for a role that is not Requester, such as ITIL or Asset Manager. It would be worth checking the license roles associated with the [cmdb_read] role in your specific ServiceNow instance to confirm.

 

Please mark my answer correct/helpful in case it adds value and moves you a step closer to your desired ServiceNow solution goal. 

Thanks,
Punit