Unauthorised Change

RaymundA
Giga Contributor

‎03-18-2024 11:47 PM

Hi all,

I raised a Change Request for Windows Server patching for the usual Microsoft patch Tuesday. 

This is a Standard change because we do this patching regularly. This has been approved by management and CAB.

The description and details in the CR describes patching for all Windows Servers in our enviroment.

However, in the midst of patching, there were two server names not added / missed out in the Affected CI tab. We have to manual add each server names in the Affected CI tab.

There was no impact to the users or services. I have added the server names into the Impacted services list. 

This has been flagged as Unauthorized Change? Please advise if it is so.

Thanks very much.

0 Helpfuls
  • 336 Views
3 REPLIES 3

Mark Manders
Mega Patron

‎03-18-2024 11:58 PM

Your change was authorized and after the approval, you make changes. That makes it unauthorized. The CAB and management 'officially' did not approve on those two servers being updated.

In 'real world' this isn't an issue, of course, because they were missed and were updated anyway and nobody will bite off your head for doing so, but administratively speaking, you didn't get authorization for these two servers.

also: https://www.servicenow.com/community/sysadmin-forum/unauthorised-change/td-p/2858755

 


Please mark any helpful or correct solutions as such. That helps others find their solutions.
Mark
0 Helpfuls

Dr Atul G- LNG
Tera Patron
Tera Patron

‎03-19-2024 03:04 AM

Hi @RaymundA 

 

https://www.servicenow.com/community/developer-forum/unauthorised-change/m-p/2857130/emcs_t/S2h8ZW1h...

 

*************************************************************************************************************
If my response proves useful, please indicate its helpfulness by selecting " Accept as Solution" and " Helpful." This action benefits both the community and me.

Regards
Dr. Atul G. - Learn N Grow Together
ServiceNow Techno - Functional Trainer
LinkedIn: https://www.linkedin.com/in/dratulgrover
YouTube: https://www.youtube.com/@LearnNGrowTogetherwithAtulG
Topmate: https://topmate.io/atul_grover_lng [ Connect for 1-1 Session]

****************************************************************************************************************
0 Helpfuls

Sohail Khilji
Kilo Patron
Kilo Patron

‎03-19-2024 03:15 AM

Hi @RaymundA ,

 

Those CIs which are added additonally are falling under unauthorized change... (as its a standard change the risk can be mitigated via offline approval from stakeholder before schedule phase.)

 

if the date has not arrived you can cancel the exisitng standard change and create a new standard change with all CIs included for patching.


☑️ Please mark responses as HELPFUL or ACCEPT SOLUTION to assist future users in finding the right solution....

LinkedIn - Lets Connect

0 Helpfuls