Join the #BuildWithBuildAgent Challenge! Get recognized, earn exclusive swag, and inspire the ServiceNow Community with what you can build using Build Agent.  Join the Challenge.

Which roles is enabled to see audit history?

loteodor
Kilo Contributor

‎07-17-2014 09:20 AM


Hi,

I activated Audit History on a custom table and as an admin user I am able to see it.

I create other custom roles and I associated them to other users (they represent the real users that will use my application). I would like to let these users see the audit history as well, but currently they are not able.

Do I have to associated these users to some specific roles?

Thank you!

0 Helpfuls
  • 7,090 Views
7 REPLIES 7

Subhajit1
Giga Guru

‎07-17-2014 10:12 AM

You will have to give the Users of your application read access to the sys_audit table through ACLs.


But that would give them access to view Audit History for all applications on Service-Now.



Thanks,


Subhajit


cbweiner
Kilo Expert

‎07-17-2014 10:23 AM

An out of box ACL exists that will allow a non-admin to view Audit History records for any table records and fields that they have read access to.   For instance, if the user can read an Incident record/field, then that user will be able to see the Audit History records that pertain to that Incident record/field.


cbweiner
Kilo Expert
In response to cbweiner

‎07-17-2014 10:25 AM

My reply is assuming you mean sys_history_line, not sys_audit.   I would recommend giving access to sys_audit to non-admins because of the security hole it opens (as Subhajit points out) as well as the fact that the sys_audit table can become quite large.


0 Helpfuls

msrishilpa
Mega Expert

‎07-17-2014 10:27 AM

Users with the certification_admin role can create, update, delete, and run audits. Users with the certification role can view audits, audit results, and follow-on tasks.




May be this link will be useful for better understanding.


Certification Audits - ServiceNow Wiki




Hope its useful!


0 Helpfuls