Join the #BuildWithBuildAgent Challenge! Get recognized, earn exclusive swag, and inspire the ServiceNow Community with what you can build using Build Agent.  Join the Challenge.

Pending User Requests

Go to solution
Bill Bonnett
Kilo Expert

‎10-22-2014 01:16 AM

How can I make it so non-admins can approve user access requests? I want a specific group to only approve pending users without having to admins to do it. Any suggestions?

0 Helpfuls
  • 2,020 Views
1 ACCEPTED SOLUTION

Go to solution
marcguy
ServiceNow Employee
ServiceNow Employee
In response to Bill Bonnett

‎10-22-2014 02:26 AM

oh ok I just took a look at it, it's a new table and has no workflow so all you have to do really is modify the 2 UI Actions called 'Create User' and 'Reject'.



current condition is this:


current.state == "pending" && (gs.hasRole("admin") || gs.hasRole("user_admin"))



so user_admins also have the rights to do this but if you want another role of as you said a group do this:


current.state == "pending" && gs.isMemberOf('sys_id of your group in there');



Also you might need to check the ACLs on that user_registration_request to ensure those users can read/write to that table.



Alternatively you could just give that group the user_admin role and that's a much easier fix then?


View solution in original post

0 Helpfuls
5 REPLIES 5

Go to solution
jkc
Giga Expert

‎10-22-2014 02:22 AM

I believe it is a 3 step process.


1) Give the group a role that has access to the User Admin menu.


2) Give the group/role access to the Pending User Registration module


3) Give the group/role acces to read/write in the Access Controls (Personalize --> Security Rules)


0 Helpfuls