Restrict user from inheriting flow_designer role

vishnukelam
Tera Contributor

We have an entitlement group called product users. This entitlement is being used to give access to several necessary roles for 600+ people. The issue we are running into with this model is that the entitlement group allows product users to access things they shouldnt.

 

For example: Product users need Model_manger role but not catalog_editor and flow_designer

 

OOB role inheritance looks like - Model_manager ---> catalog_editor ---> flow_designer

 

How can I restrict the role of inheritance based on the group added to the parent group?

2 REPLIES 2

Dr Atul G- LNG
Tera Patron
Tera Patron

Hi @vishnukelam 

 

To remove the inheritance, it is not easy as it can impact other places as well, I think the best is in this case create a new role and that you can use for your purpose.

*************************************************************************************************************
If my response proves useful, please indicate its helpfulness by selecting " Accept as Solution" and " Helpful." This action benefits both the community and me.

Regards
Dr. Atul G. - Learn N Grow Together
ServiceNow Techno - Functional Trainer
LinkedIn: https://www.linkedin.com/in/dratulgrover
YouTube: https://www.youtube.com/@LearnNGrowTogetherwithAtulG
Topmate: https://topmate.io/atul_grover_lng [ Connect for 1-1 Session]

****************************************************************************************************************

jcmings
Mega Sage

For a less-secure approach to "disable access" you could simply hide the modules that users are accessing flow designer and catalog editor from. 

 

Otherwise, the solution would be to create a new role. Messing with inheritance... not recommended.