How to Provide Read-Only Access to Incidents Without Granting ITIL Role

Go to solution
Kumar54
Tera Contributor

a week ago

Hi Community,

I have a scenario where certain business managers (non-ITIL users) need the ability to view incidents in ServiceNow without being granted the ITIL role. These users:

  • Do not need to create, update, or assign incidents.
  • Only require read-only access to specific types of incidents (based on conditions such as assignment group, category, or other filters).
  • Should be able to view the form details and work notes but not perform any actions.

I’d like to achieve this without modifying the standard incident ACLs tied to ITIL.

I also noticed that:

  • I don’t see any SNC-internal role available.
  • The sn_read_only role is also not helpful in this case.

Questions:

  1. What is the recommended way to grant incident read-only access to a custom role (non-ITIL)?
  2. Should I clone the incident ACLs and adjust conditions for the new role?
  3. Is there a better approach (e.g., data policies, UI view restrictions, or reporting-only access) for such use cases?

Appreciate any guidance or best practices from those who’ve implemented a similar requirement.

 

0 Helpfuls
  • 651 Views
1 ACCEPTED SOLUTION

Go to solution
Dr Atul G- LNG
Tera Patron
Tera Patron

a week ago

Hi @Kumar54 

 

  • The sn_read_only role is also not helpful in this case.

Any reason why?

*************************************************************************************************************
If my response proves useful, please indicate its helpfulness by selecting " Accept as Solution" and " Helpful." This action benefits both the community and me.

Regards
Dr. Atul G. - Learn N Grow Together
ServiceNow Techno - Functional Trainer
LinkedIn: https://www.linkedin.com/in/dratulgrover
YouTube: https://www.youtube.com/@LearnNGrowTogetherwithAtulG
Topmate: https://topmate.io/atul_grover_lng [ Connect for 1-1 Session]

****************************************************************************************************************

View solution in original post

0 Helpfuls
13 REPLIES 13

Go to solution
Ankur Bawiskar
Tera Patron
Tera Patron

a week ago

@Kumar54 

you can create your own table level READ ACL and give custom role to it, so that they can view.

If my response helped please mark it correct and close the thread so that it benefits future readers.

Regards,
Ankur
Certified Technical Architect  ||  9x ServiceNow MVP  ||  ServiceNow Community Leader
0 Helpfuls

Go to solution
Dr Atul G- LNG
Tera Patron
Tera Patron

a week ago

Hi @Kumar54 

You can give the SN_incident_read role.

*************************************************************************************************************
If my response proves useful, please indicate its helpfulness by selecting " Accept as Solution" and " Helpful." This action benefits both the community and me.

Regards
Dr. Atul G. - Learn N Grow Together
ServiceNow Techno - Functional Trainer
LinkedIn: https://www.linkedin.com/in/dratulgrover
YouTube: https://www.youtube.com/@LearnNGrowTogetherwithAtulG
Topmate: https://topmate.io/atul_grover_lng [ Connect for 1-1 Session]

****************************************************************************************************************
0 Helpfuls

Go to solution
Kumar54
Tera Contributor
In response to Dr Atul G- LNG

a week ago

I cant find sn_incident role or snc_internal or external role . I mean its not available

 

 

0 Helpfuls

Go to solution
Nikhil Bajaj9
Giga Sage

a week ago

Hi @Kumar54 ,

 

You can utilize - sn_incident_read role for your purpose.

 

Regards,

Nikhil Bajaj

Please appreciate my efforts, help and support extended to you by clicking on – “Accept as Solution”; button under my answer. It will motivate me to help others as well.
Regards,
Nikhil Bajaj
0 Helpfuls