- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-04-2014 06:33 AM
Hi all,
We are just about to have an audit and I have been asked to come up with a solution on allowing the auditors "Read Only" access into SN. After reading all the forums to see what other admins have done, I am still lost as to what route is best. Now I know ACL's are what a lot of guys have said, but as there has to be a better way in doing this and I am a bit weary about going down this route as we will be upgrading from Calgary to Eureka whilst they complete the audit.
Can anyone out there that has completed this please share what they have done?
Thanks all,
Lucien
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-05-2014 08:42 AM
Hey Lucien,
Unfortunately, this solution requires the use of those roles. To allow visibility without any role usage, you would certainly have to go down the ACL route (no fun). Depending on the length of the audit engagement, perhaps you could shift things around temporarily to accommodate the auditors? Sorry there isn't an easier role-free solution!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-04-2014 06:57 AM
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-04-2014 07:16 AM
Hey Lucien - I'm the author of the app that Brad mentions. To be clear, the Auditor Role app on Share simply uses client-side scripting to disable write capabilities in the platform. It is not as secure as ACLs would be, as client-side scripting is susceptible to scripting attacks. However, it is quick and easy and should be sufficient for your particular needs. I would not be inclined to undertake the ACL approach if yours is a temporary need, as that requires quite a lot of work and testing. There is some buzz about a true auditor role in ServiceNow's future, but the app is a nice option for now.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-05-2014 01:04 AM
Hi Brad Tilton and Ben Hollifield,
Thank you guys for this info, this is going to save SOOOO much time (and my weekend ). I am going to be testing this today and make sure I don't break anything else.
If it works and you ever pass through London, I will buy you guys a few beers.
Kind regards,
Lucien
****** Update ******
Hi guys,
I am busy testing this and yes it is great, (thank you) but the slight problem is that I am trying to complete this without having the "Itil" role with limited licenses this is a little difficult.
I do know I don't want to go down ACL's as I would need to update so many fields and also might have adverse affects at a later stage.
Have you come across anything that might work?
Thanks again,
Lucien
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
08-05-2014 08:42 AM
Hey Lucien,
Unfortunately, this solution requires the use of those roles. To allow visibility without any role usage, you would certainly have to go down the ACL route (no fun). Depending on the length of the audit engagement, perhaps you could shift things around temporarily to accommodate the auditors? Sorry there isn't an easier role-free solution!
