Find your people. Pick a challenge. Ship something real. The CreatorCon Hackathon is coming to the Community Pavilion for one epic night. Every skill level, every role welcome. Join us on May 5th and learn more here.

Restrict user from inheriting flow_designer role

vishnukelam
Tera Contributor

‎02-11-2025 07:13 AM - edited ‎02-11-2025 07:13 AM

We have an entitlement group called product users. This entitlement is being used to give access to several necessary roles for 600+ people. The issue we are running into with this model is that the entitlement group allows product users to access things they shouldnt.

 

For example: Product users need Model_manger role but not catalog_editor and flow_designer

 

OOB role inheritance looks like - Model_manager ---> catalog_editor ---> flow_designer

 

How can I restrict the role of inheritance based on the group added to the parent group?

Labels:
0 Helpfuls
  • 720 Views
2 REPLIES 2

Dr Atul G- LNG
Tera Patron

‎02-11-2025 07:45 AM

Hi @vishnukelam 

 

To remove the inheritance, it is not easy as it can impact other places as well, I think the best is in this case create a new role and that you can use for your purpose.

*************************************************************************************************************
Regards
Dr. Atul G. - Learn N Grow Together
ServiceNow Techno - Functional Trainer
LinkedIn: https://www.linkedin.com/in/dratulgrover
YouTube: https://www.youtube.com/@LearnNGrowTogetherwithAtulG
Topmate: https://topmate.io/dratulgrover [ Connect for 1-1 Session]

****************************************************************************************************************
0 Helpfuls

jcmings
ServiceNow Employee

‎02-11-2025 02:19 PM

For a less-secure approach to "disable access" you could simply hide the modules that users are accessing flow designer and catalog editor from. 

 

Otherwise, the solution would be to create a new role. Messing with inheritance... not recommended.

0 Helpfuls