CMDB Roles

Roelof Strydom
Tera Contributor

‎05-23-2022 03:05 AM

Good morning, 

I am very new to SN and need some advise/guidance please.

I need to setup 2 roles :

  • CMDB Admin
  • CMDB Read-Only

Reference link : https://community.servicenow.com/community?id=community_question&sys_id=62ea198ddbed089cf7fca851ca961965

When following the diagram in the reference link, I can see the "admin" group. This role can edit/update user accounts in SN which should not be part of the CMDB Admin role. Is this by design or is there an additional role I can remove to stop this?

Also the same with CMDB Read-Only, they can't seem to open any CMDB CI's when using the roles assigne as per the one on the reference link.

Am I missing something or doing something complete wrong?

Regards

Roelof

0 Helpfuls
  • 10,941 Views
4 REPLIES 4

suvro
Mega Sage
Mega Sage

‎05-23-2022 03:16 AM

Hi,

 

ITIL role (create/modify/delete) and cmdb_read role will be enough .

Roelof Strydom
Tera Contributor
In response to suvro

‎05-23-2022 03:41 AM

Hi,

I am guessing this will be for the Read-Only role?

CMDB Admins still need to run discovery, edit and run reports.

I have for now applied the "ecmdb_admin" role.

Regards

0 Helpfuls

Nilanjan1
Mega Sage

‎05-23-2022 06:18 AM

If you want to have a complete read of what roles needs to be provided. You can type in roles in the application Navigator. You would find a list of roles and a definition of what these roles can do. 

 

 

Step 1 : Type in Roles

find_real_file.png

 

find_real_file.png

 

 

find_real_file.png

Regards

Nilanjan

 

 

Preview file
24 KB
Preview file
72 KB
Preview file
118 KB

Phil Scherry
Tera Guru

‎05-23-2022 10:38 AM

Be sure to take the CMDB micro certifications:

Micro-Certification - CMDB Health
Micro-Certification - Configure the CMDB