Which roles is enabled to see audit history?

loteodor
Kilo Contributor

‎07-17-2014 09:20 AM


Hi,

I activated Audit History on a custom table and as an admin user I am able to see it.

I create other custom roles and I associated them to other users (they represent the real users that will use my application). I would like to let these users see the audit history as well, but currently they are not able.

Do I have to associated these users to some specific roles?

Thank you!

0 Helpfuls
  • 6,588 Views
7 REPLIES 7

Subhajit1
Giga Guru

‎07-17-2014 10:12 AM

You will have to give the Users of your application read access to the sys_audit table through ACLs.


But that would give them access to view Audit History for all applications on Service-Now.



Thanks,


Subhajit


cbweiner
Kilo Expert

‎07-17-2014 10:23 AM

An out of box ACL exists that will allow a non-admin to view Audit History records for any table records and fields that they have read access to.   For instance, if the user can read an Incident record/field, then that user will be able to see the Audit History records that pertain to that Incident record/field.


cbweiner
Kilo Expert
In response to cbweiner

‎07-17-2014 10:25 AM

My reply is assuming you mean sys_history_line, not sys_audit.   I would recommend giving access to sys_audit to non-admins because of the security hole it opens (as Subhajit points out) as well as the fact that the sys_audit table can become quite large.


0 Helpfuls

msrishilpa
Mega Expert

‎07-17-2014 10:27 AM

Users with the certification_admin role can create, update, delete, and run audits. Users with the certification role can view audits, audit results, and follow-on tasks.




May be this link will be useful for better understanding.


Certification Audits - ServiceNow Wiki




Hope its useful!


0 Helpfuls