Hi everyone,
We are running an on-premises instance of ServiceNow in our organization. As part of our monitoring setup, we want to regularly query the "xmlstats.do" endpoint to check system availability and health.
Currently, access to this endpoint is only possible using an admin account. However, for security reasons, we would like to avoid using admin credentials for automated or recurring monitoring tasks.
Our question is:
Is there a way to grant a non-admin user permission to access "xmlstats.do"?
If so, which roles, ACLs, or configurations would be required?
We were pointed to four relevant sys_properties. Two of them seem potentially relevant to our use case:
• glide.securiy.diag.txns.acl
• glide.custom.ip.authenticate.allow
However, these settings seem to apply to entire IP ranges rather than specific users or roles.
I would really appreciate any insights, experiences, or best practices from the community — maybe someone has faced a similar challenge or already implemented a secure solution.
Thanks in advance for your support!
