Add roles to t1 group and t2 group

Dileep Raju · ‎11-04-2023

As an Incident owner, I want to add below access privileges to the t1 & t2 groups.
1) Ability to report on interaction records
2) Read-Only access to assignment rules
3) Read-only access to incident email logs.
4) Read-only access to service level configurations
5) Ability to cancel Incidents

1. Users in the t1 & t2 groups have read-only access to view existing incident email logs for review.

2. Users in the t1 & t2 groups should have the ability to report on interaction records

3. User in the mentioned groups should have the ability to view the existing assignment rules in read-only mode.

4. Users should not have the capability to modify or alter assignment rules.

5. Users in the t1 & t2 groups should have 'Read-only access to service level configurations'.

6. Users in the t1 & t2 groups should have the ability to cancel incidents.

Test users
1. ITIL User
2. T1 & T2 Group user

Minh Huy Lam Qu · ‎11-05-2023

Because the point 2 and point 3, these modules are just available for "admin" role. If you want to allow other role access to "Assignment Rule" and Logs, you need to config the ACLs and module visibility.

=> For the easy approach, you can granted the "admin" role with read-only. With the read-only role, they will not create or modify anything in the system.

View solution in original post

Danish Bhairag2 · ‎11-05-2023

Hi @Dileep Raju ,

Please try the below roles:

1) Ability to report on interaction records - snc_internal
2) Read-Only access to assignment rules - You need to modify the existing ACL depending upon the requirement timeline as it requires assignment_rule_admin, you can add existing role to the module & create a new Read ACL on assignment rule table & write this below script:

if(gs.getUser().isMemberOf('Group1 Name') || gs.getUser().isMemberOf('Group2 Name')) {// provide sys id or Group name of both groups
answer = true;
}

3) Read-only access to incident email logs. - email_read
4) Read-only access to service level configurations - did not understood clearly what kind of configurations.
5) Ability to cancel Incidents - itil

Thanks,

Danish

Dileep Raju · ‎11-06-2023

Hi @Danish Bhairag2
Sorry For late reply
It is not working as expected for 1st point
For 3rd one I could find email_read

Danish Bhairag2 · ‎11-06-2023

Hi @Dileep Raju ,

Apologies along with snc_internal u will also need to provide report_user role for report creation as well. Please check below snip for report roles

Thanks,

Danish

Dileep Raju · ‎11-10-2023

Hi @Danish Bhairag2 & @Minh Huy Lam Qu
Thank you for quick reply
Can Someone Please help me Solution for below 2 points please
1) Ability to report on interaction records

3) Read-only access to incident email logs.