How to check Impersonation of a team member for the below scenario

Gopika P S · ‎06-09-2022

There are two groups A and B. Where both of the team has admin access and can impersonate each other. Whereas, the access to RITM and Task table is only restricted to group A. But, there is a chance for a group B member to impersonate someone from group A and access both of these restricted RITM, Task tables.

What is the better solution for the above Scenario?

scott barnard1 · ‎06-09-2022

Hi Gopika

If you go to the instance security centre - /isc

There are some analytics for impersonations. So you can see who is impersonating and when

Also to note why do either team need admin? RITM and Task can be processed with itil role.

Regards

Gopika P S · ‎06-09-2022

Using analytics can we restrict from impersonating?

Ankur Bawiskar · ‎06-09-2022

Hi,

you can check this link and update the OOB script include for impersonation

You can check the logged in user is member of which group and whether impersonation is allowed for the user selected based on user selected is member of Group A

Restrict a Particular User From Appearing in the Impersonation List

also check this

Can you limit Impersonator to specific users/groups as the target?

Regards
Ankur

Regards,
Ankur
✨ Certified Technical Architect || ✨ 9x ServiceNow MVP || ✨ ServiceNow Community Leader

Ankur Bawiskar · ‎06-10-2022

@Gopika P S

Hope you are doing good.

Did my reply answer your question?

If my response helped please close the thread by marking appropriate response as correct so that it benefits future readers.

Regards
Ankur

Regards,
Ankur
✨ Certified Technical Architect || ✨ 9x ServiceNow MVP || ✨ ServiceNow Community Leader