"Read-Only" Admin

brettdrake11
Kilo Contributor

‎10-30-2018 08:42 AM

I keep hearing people request the "read only admin" role.  I've looked in our instances and in a fresh OOB developer instance and I'm not seeing such a thing.  The first few requests I shrugged off, but now too many people have made this request, independently, for me to think that they're all making it up.  What's the scoop with this?

Labels:
  • 7,380 Views
4 REPLIES 4

Nitesh Balusu
Giga Guru

‎10-30-2018 08:56 AM

We built this ourselves, its basically everything an admin can view, but modifying/creating is very limited, deletion is prohibited. 

0 Helpfuls

Nitesh Balusu
Giga Guru
In response to Nitesh Balusu

‎10-30-2018 09:19 AM

Basically building a role, call it read-only-admin, modify ACL's of all tables, give that role itil within it, and then modify read ACL's of business rules, client scripts, ui policies, ui pages, email notifications, system logs etc,... you can extend it to whatever extent you want it to reach.

This is how we built it.

find_real_file.png

 

 

Preview file
56 KB
0 Helpfuls

mmaraj1
Mega Expert

‎10-30-2018 09:03 AM

found this...

 

https://docs.servicenow.com/bundle/helsinki-platform-administration/page/administer/user-administration/task/t_LogInWithTheReadOnlyRole.html

 

Users logging into a production instance should log in using the snc_read_only role to prevent unwanted modifications to the instance data.

  1. Click To log on with different role(s), click here.
  2. Enter read_only, maint.
  3. Click Refresh.
  4. Click read_only,maint to login.
0 Helpfuls

G24
Kilo Sage
In response to mmaraj1

‎06-05-2023 11:34 AM

@mmaraj1 Link seems to be broken.  : (

0 Helpfuls