Limitations on Data Certification Admin Role with CMDB Workspace

Robert Campbell · ‎08-29-2024

We use the role certification_admin for the group that owns the data certification process. This groups configures and manages all of the data certifications that happen regardless of the tables being used.

Now, with the CMDB Workspace, the role they need is sn_cmdb_admin and this makes them an admin in this workspace which gives them so much more access than they need.

Is there a way to give "admin" access to certifications only?

Community Alums · ‎08-29-2024

Hi @Robert Campbell ,

You should try giving them sn_cmdb_user role or if few things they are not able to do then look for sn_cmdb_editor role.

Tony Branton · ‎08-29-2024

It's not currently possible to grant access to Data Manager with a user role other than sn_cmdb_admin. Data Manager is accessed via the Management page in CMDB Workspace which requires the sn_cmdb_admin role.

While we can investigate extending the data_manager_admin role to providing access to Data Manager, we would also need to investigate how to provide access to users assigned this role without necessarily routing through the Management page.

BHackenberger · ‎07-18-2025

This was the answer I came looking for so thanks @Tony Branton . Have there been any updates, or are there any planned for this functionality? We are doing data certifications on non-cmdb tables (groups, catalog items, etc.) and this is far more access than the stakeholders who need to review the cert runs and manage the schedules need or should have. If data certifications are moving solely to the workspace, having a role for the folks that do certifications, but not on the cmdb, makes a lot of sense.