User with Read only access

prakharmahe
Tera Contributor

Hi 

If someone has ITIL role and I add snc_read_only role with it, then the user cannnot create/update/delete any table data or is there any issue with this role?

Total role for this user - 52

itil
snc_read_only
sn_sow.it_agent_dashboard_user
dependency_views
knowledge
sn_bm_client.benchmark_data_viewer
sn_problem_write
sn_request_read
actsub_user
cmdb_ms_editor
snc_required_script_writer_permission
sn_cmdb_editor
sn_nb_action.next_best_action_user
template_editor
tracked_file_reader
interaction_agent
email_client_template_read
contact_user
sn_request_write
sn_gd_guidance.guidance_user
data_manager_user
sn_change_write
certification
cmdb_query_builder_read
sn_incident_write
sn_itsm_contact_query
cmdb_read
cmdb_ms_user
sn_comm_management.comm_plan_viewer
sn_sow.sow_home
task_editor
sn_sow.sow_list
sn_sow.sow_user
email_composer
sn_sttrm_condition_read
sn_publications_recipients_user
canvas_user
app_service_user
template_read_global
sn_cmdb_user
workspace_user
snc_platform_rest_api_access
sn_request_approver_read
view_changer
sn_problem_read
viz_creator
sn_change_read
sn_incident_read
agent_workspace_user
sn_publications_recipients_list_user
cmdb_query_builder
survey_reader
13 REPLIES 13

abbasshaik4
Tera Sage

Hi @prakharmahe

 

can you please elaborate your query.

 

what I understood is if someone has Roles like ITIL and sn_read_only they have only read only access to the platform to database.

 

If it is helpful, please mark it as helpful and accept the correct solution by referring to this someone in the future it will be helpful to them.

 

Thanks & Regards,

Abbas Shaik

@abbasshaik4 
My issue is that I want to give read only access to a user for audit purpose, I don't want that user to make any changes in SNOW so what kind of role can I give?

@prakharmahe yes, you can give the ITIL and snc_read_only roles.

Tanushree Maiti
Tera Patron

Hi @prakharmahe 

 

The snc_read_only role is a platform-level role that enforces read-only access across the instance. If a user has both itil and snc_read_only, the read-only restriction takes precedence.

As a result, a user with both roles:

  • Can view records they have access to.
  • Cannot create new records.
  • Cannot update existing records.
  •  Cannot delete records.

 

 

Refer: 

ServiceNow Things to Know 26: Read-only Role

 

Also check :KB0687016 Why end user with snc_read_only role unable to add/edit/delete items in cart and create Re... 

Please Accept the solution if it assisted you with your question & Mark this response as Helpful.
Regards
Tanushree Maiti
ServiceNow Technical Architect
LinkedIn: https://www.linkedin.com/in/tanushreemaiti