What access does a BCM Admin have within ServiceNow?

Danj93 · ‎03-28-2024

I am looking for some help as a BCM Administrator, we are finding that we need to go through our SN Administrators to do simple process like added and removing users and creating reports along with changes how our users have access to features in the BCM modules. Is this common or should a BCM administrator have the access to do everything they need to within the BCM module. How do other shops have this setup. Thanks for any advice or recommendations.

Community Alums · ‎03-29-2024

Hi @Danj93 ,


Role title [name]	Description	Contains roles	Available with scope
BCM administrator [sn_bcm.admin]	Create, read, write, and delete access to all tables including the core data.	sn_bcm.program_manager sn_bcm.core_manager sn_bia.bia_admin sn_bcp.plan_admin sn_grc_appr.admin Note: The BCM admin contains the Approver Configurator admin role, but it doesn’t contain the Approver Configurator developer role. For security reasons, the Approver Configurator admin has read access to the Script field on the Approval Rule form. If you have the Approver Configurator developer role in the GRC: Approver Configurator application, you’ve create and write access to the Script field on the Approval Rule form. For more information on the roles in the GRC: Approver Configurator application, see Roles installed with GRC: Approver Configurator.	Business Continuity Management – Core
BCM Program Manager [sn_bcm.program_manager]	Create, read, write, and delete access to all BCM application tables.	sn_bcp.plan_manager sn_bia.bia_manager sn_recovery.event_manager sn_bcm.core_viewer workspace_user service_viewer	Business Continuity Management – Core
BCM Planner [sn_bcm.planner]	Create, read, write, and delete access to all BCPs, BIAs, exercises, and crisis events that are created or owned by the planner. Note: If you have the BCM planner role and you are not the owner of the exercise, you cannot remove the assets from an exercise or remove a plan from the exercise, but you can add the assets or a plan. Additionally, if you are not the plan owner, you can only add the approved plans in an exercise or crisis event.	sn_bia.bia_planner sn_bia.bia_viewer sn_bcp.plan_contributor sn_recovery.event_user sn_bcm.core_viewer workspace_user service_viewer	Business Continuity Management – Core
BCM Contributor [sn_bcm.contributor]	Read access to all BIAs, exercises, and crisis events tables. Read access to BCP tables if the contributor is included in the contributor list. Create and delete existing dependencies when the group is in pending state. Write access to the RTO, RPO, and dependency category state fields, disruptive duration of RTO and RPO editable fields, and dependency assessment editable fields. Update RTO, RPO, and dependency assessment state.	sn_bia.bia_contributor service_viewer sn_bcm.core_viewer	Business Continuity Management – Core
BCM Viewer [sn_bcm.viewer]	View all data of the BCM applications.	sn_recovery.event_viewer workspace_user sn_bia.bia_viewer sn_bcp.plan_viewer service_viewer sn_bcm.core_viewer	Business Continuity Management – Core
BCM Recovery Team member [sn_bcm.recovery_team_member]	View the list of recovery tasks for crisis events and exercises assigned by the BCM Program Manager.	sn_recovery.event_viewer sn_bcp.plan_viewer sn_bcm.core_viewer sn_recovery.event_member	Business Continuity Management – Core
Approval configuration admin [sn_grc_appr.admin]	Create, read, write, and delete access to all approver configurator setup tables.	Note: To approve an approval configuration record in the BCM application, you must have a BCM role. If you add a user with a non- BCM role to the approval process of an approval configuration record, the record may become inaccessible due to being in an inaccessible state.	Business Continuity Management – Approver Configurator
Approver [sn_grc_appr.approver]	Create, read, write, and delete access to the Approval table.		Business Continuity Management – Approver Configurator

BCM lite operator role

For information on the BCM lite operator role, see Business Continuity Management lite operators.

Danj93 · ‎04-15-2024

This was helpful, do you have a list of tables the BCM Administrator should have access to? We are trying to figure out if our group was given access to all the proper tables for, we seem to have rely on our SN administers to create reports on BCM status, add and remove users, update BIA module to name a few. - thanks for any advice.

Rakesh Chigari · ‎03-31-2024

Hi @Danj93

If you are talking about adding/removing users from BCM groups or other groups, this task is not specific BCM admin. so, how are we managing this? we have BCM related groups (EX: BCM planer group), with group manager. anyone who want to be member of this, should submit request via group management catalog item, which triggers an approval to group manager, once approved, member will be added automatically without intervention from support team or admin team.

Again creating report has nothing to do with BCM admin task, report user or report group user is basic role, with this role, you should be able to build required reports. if not take support from reporting team and build one time dashboard for BCM.

All other BCM related task, like element definitions, impact categories, RTO & RPO configuration, timeframes, approval configurations, etc are managed by BCM admin itself, we wont rely on SN admin for this.

If i got your questions completely wrong, apologies, feel free to share additional info

If I could help you with your Query then, please hit the Thumb Icon and mark as Correct

Danj93 · ‎04-10-2024

Sorry for delayed response, my team are BCM admins, but we are limited on how we can add users, remove users as a quick example, so I am looking to see what levels of permissions are common for BCM admins. Our ServiceNow Admins feel we should not have access to the few levels of permissions that overlap. So, I am trying to build a case that we need more permissions. I was told that there is a sub-Suto SN Admin that would give us all the access we need. - if you could list what levels a BCM Admin should have that would be great.