Difference between sn_risk.user and sn_risk.reader roles?

Pushpanjali Ch1
Giga Contributor

Hello,

I want to understand the difference between a READER and an USER role. Which has more access rights and what are those? I have referred to SNOW docs but did not find helpful. 

Can someone please explain from their working experience?

Thanks!!

1 ACCEPTED SOLUTION

sachin_namjoshi
Kilo Patron
Kilo Patron

Please see OOB ACLs' which contains one of these two roles below

 

https://<<<YOUR_INSTANCE_NAME>>>.service-now.com/sys_security_acl_role_list.do?sysparm_query=sys_user_role%3D7585a261cb200200829cf865734c9cd7%5EORsys_user_role%3Df82ca1c1d7321200d92cc257ed6103d9

 

Both roles has access to different tables for CRUD operations.

 

Regards,

Sachin

View solution in original post

4 REPLIES 4

Mark Roethof
Tera Patron
Tera Patron

Hi there,

Have a look at this docs page, has a good explanation of what the roles contain.
https://docs.servicenow.com/bundle/jakarta-governance-risk-compliance/page/product/grc-risk/referenc...

* sn_risk.user:
Contains the reader and user roles in sn_grc scope, and the reader role in the Risk Management application. In addition to the inherited permissions, the risk user can view profile types, profiles, risks, and remediation tasks. The risk user can be assigned risks and has read-only access to the Policy and Compliance Management application and modules.

sn_grc.reader
sn_grc.user
sn_risk.reader
Inherits the following roles if the GRC: Policy and Compliance Management plugin is activated.
grc_compliance_reader
grc_user
grc_audit_reader
grc_control_test_reader
task_editor

* sn_risk.reader:
Contains the reader role in sn_grc scope. In addition to the inherited permissions, the risk reader has read-only access rights to the Risk application and modules and can be assigned risks.

sn_grc.reader

If my answer helped you in any way, please then mark it as helpful.

Kind regards,
Mark

---

LinkedIn

 

Kind regards,

 

Mark Roethof

Independent ServiceNow Consultant

10x ServiceNow MVP

---

 

~444 Articles, Blogs, Videos, Podcasts, Share projects - Experiences from the field

LinkedIn

sachin_namjoshi
Kilo Patron
Kilo Patron

Please see OOB ACLs' which contains one of these two roles below

 

https://<<<YOUR_INSTANCE_NAME>>>.service-now.com/sys_security_acl_role_list.do?sysparm_query=sys_user_role%3D7585a261cb200200829cf865734c9cd7%5EORsys_user_role%3Df82ca1c1d7321200d92cc257ed6103d9

 

Both roles has access to different tables for CRUD operations.

 

Regards,

Sachin

Thanks Sachin

Amy_Sec
Giga Contributor

Hello,

Can someone with a risk reader only export data? Thanks!