Discovery Roles.

Go to solution
Anupam Thomas
Tera Expert

‎09-06-2020 11:17 PM

Hi,
Is there a Discovery Role available/ or configurable in SNOW which only allows "read only" access to the user which means no creation, update or deletion should be allowed to this role. 

 

Please share available docs. related to this setup.

 

Thanks in advance. 

Labels:
0 Helpfuls
  • 4,251 Views
1 ACCEPTED SOLUTION

Go to solution
Ashutosh Munot1
Kilo Patron
Kilo Patron

‎09-07-2020 07:46 AM

Hi,

We have given our users with discovery admin with snc_read_only role.

Thanks,
Ashutosh

View solution in original post

13 REPLIES 13

Go to solution
Alikutty A
Tera Sage

‎09-06-2020 11:19 PM

Hi,

Are you talking about read only access on the CMDB CI? You can use the cmdb_read role for this purpose.

https://docs.servicenow.com/bundle/madrid-platform-administration/page/administer/roles/reference/r_BaseSystemRoles.html

Thanks!

 

Go to solution
Anupam Thomas
Tera Expert
In response to Alikutty A

‎09-06-2020 11:48 PM

Hi Alikutty,
thank you for the reply, I had some info regarding the CMDB CI, so what I am looking for is I want a particular user to be able to view all the setup done for discovery(any setup like discovery schedule creation) in an instance but the user should not be able to make any changes from their end, eg: user can view the cmdb but not make any changes, or user can view the discovery schedule created but not add or update the schedule from their end.

Thank you 

0 Helpfuls

Go to solution
Sajilal
Mega Sage

‎09-06-2020 11:21 PM

Hi Anupam,

If you are asking for read only role to Discovery Application, then NO there is no OOB access as such. You will have to customize your ACLs and provide them with either any of the OOB read role to the ACL or your customized role.

Hope this helps!

Thanks,

Saji

Go to solution
Anupam Thomas
Tera Expert
In response to Sajilal

‎09-06-2020 11:42 PM

Hi Sajilal ,
thank you for the reply, I was browsing through the community when I came accross this information that we can provide "sync_read_only" access to a user whom we want to grant "read only" access,  then that user will not be able to create or update records in any table or application- is this role available? so what I am looking for is I want a particular user to be able to view all the setup done for discovery in an instance but the user should not be able to make any changes from their end.

 

Thank you. 

0 Helpfuls